Home

Phishing Scam: Contact Form Submissions

There is a new phishing scam online that targets contact forms. Even with reCaptcha verification embedded in the form it can still make its way through. It's getting past reCaptacha because real people are filling the form out, and not bots like most mass-phishing scams. It seems like the focus is to verify there is a real person responding to the contact forms so that the URL can be sold as parts of larger verified contact form lists to other scammers/hackers.

Victim of a Phishing Scam: Hand holding iPhone with lots of calls from telemarketersPhoto by Lindsey LaMont on Unsplash 

Posing as illustrators and stock photo photographers, they fill out the contact form with the below format (names & phrasing may vary):

 

Hi,

This is Melaina and I am a professional illustrator.

I was surprised, putting it lightly, when I came across my images at your web-site. If you use a copyrighted image without an owner's consent, you should be aware that you could be sued by the owner.

It's illegitimate to use stolen images and it's so low!

Here is this document with the links to my images you used at [your URL] and my earlier publications to get the evidence of my ownership.

Download it now and check this out for yourself: [PHISHING LINK]

If you don't get rid of the images mentioned in the document above during the next several days, I'll file a complaint on you to your hosting provider stating that my copyrights have been severely infringed and I am trying to protect my intellectual property.

And if it doesn't work, trust me I am going to report and sue you! And I will not bother myself to let you know of it in advance.  

It is important to note that opening the e-mail will not download a virus or place you on any lists.

 

Clicking the phishing link is the trigger --- so avoid all links or PDFs! Delete the e-mail and move on with your day. Prioritize making time to learn more about phishing scams. Look for particularly bad grammar, non-descriptive short e-mails with PDFs attached, and strange links with long URLs. If you are suspicious of an e-mail, it is in your best interest to be safe rather than sorry.

 

GoDaddy has already begun to crack down on this issue, and other hosting providers will likely follow. Interested in browsing as securely as possible, consider getting a VPN (Virtual Private Network). Learn more about it here! If you are in the DFW area and you have gotten a virus from one of these scams, please contact Technogizmo IT here. and we will do everything we can to fix your problem.  

 

Having other issues with your contact forms? Contact us-- we love a good challenge.

web tips, online security, tips, IT tips

© 2021 Technogizmo. All rights reserved.