I'm sure anyone running a MSFS business has received their fair share of scam emails. 99 times out of 100 they are easy to spot but this one had me questioning things a bit as it's not something I've seen before.
The title was "Seeking Clarification on Recent Card Transaction" and the text of the message was:
"I lately stumbled upon a unexpected charge on my account. I didn't initiate this transaction.
Could you please investigate and provide details at your soonest opportunity? If necessary, I'm more than willing to share any required details.
I cordially request your cooperation in resolving this matter with my bank for a prompt resolution.
Appreciate your quick response."
I suspected this was a scam because I don't directly process transactions so my company name would never appear on anyone's bank statement.
Apparently the scam works like this; you email them back asking them to send more information (because the email provides nothing useful) and they send you a zip or pdf file with "the information". If you try to open any of those files it's probably going to install a session file hijacker (which will copy all your logins from any open browsers you have) or some other malware. This is what happened to Linus Tech Tips last year when someone thought they were opening a PDF sent by a sponsor but was actually opening a .scr file which read their logins and the rest was history.
Remember, don't open attachments from people you don't know. Especially if their initial email is very generic sounding.
The title was "Seeking Clarification on Recent Card Transaction" and the text of the message was:
"I lately stumbled upon a unexpected charge on my account. I didn't initiate this transaction.
Could you please investigate and provide details at your soonest opportunity? If necessary, I'm more than willing to share any required details.
I cordially request your cooperation in resolving this matter with my bank for a prompt resolution.
Appreciate your quick response."
I suspected this was a scam because I don't directly process transactions so my company name would never appear on anyone's bank statement.
Apparently the scam works like this; you email them back asking them to send more information (because the email provides nothing useful) and they send you a zip or pdf file with "the information". If you try to open any of those files it's probably going to install a session file hijacker (which will copy all your logins from any open browsers you have) or some other malware. This is what happened to Linus Tech Tips last year when someone thought they were opening a PDF sent by a sponsor but was actually opening a .scr file which read their logins and the rest was history.
Remember, don't open attachments from people you don't know. Especially if their initial email is very generic sounding.