Updated: May 21
BBB is advising members of the workforce to stay on the lookout for a new type of phishing email being distributed by scammers attempting to capitalize on the COVID-19 pandemic.
The emails spoof your HR representative, manager or IT department, and prompt you to take a work-related action: download a company policy document, click a link to update payroll information, provide sensitive information or log-in credentials, and others.
Similar to other phishing emails, these emails are either seeking personal information to steal, or they covertly install malware on your computer. For many navigating the waters of working from home for the first time-- and with an influx of legitimate coronavirus-related emails circulating at the moment-- scammers are hoping their emails will slip through undetected.
When in doubt, use BBB’s tried and true checklist for suspicious emails:
Never click on links or download attachments in an unexpected email, even if it appears to be from your employer. Call or email your manager to confirm the email’s legitimacy first.
Be wary of emails asking for account numbers, log-in information, credit card numbers, or wire transfers.
Install antivirus software on your devices, and keep it up to date. Enable auto-updates if available.