Cybercriminals reach out to their targets under the guise of arranging a promotional deal. But, their goal is to convince them to download malware that will compromise their devices. “To do this, they tell their victims to download a file, claiming that it is a contract or some piece of essential promotional material. In reality, this is a piece of malicious software that can hijack the creator’s device and account,” NordVPN explained. NordVPN is urging content creators to contact its customer support if they have doubts about the authenticity of a message from someone posing as a representative of the company. Reporting phishing emails allows NordVPN to take action against fraudulent domains and protect others.
Identifying Phishing Emails
It’s easy to fall for this scam since NordVPN is known for its partnerships with creators. The company has partnered with several popular YouTubers and streamers, such as PewDiePie, MrBeast Gaming, Mayuko, and TopTenz. With a rise in social engineering scams in recent years, it’s especially important to confirm the identity of brand representatives. NordVPN suggests checking the sender’s email address to ensure it comes from a legitimate company domain name. With NordVPN, check for the domains @nordvpn.com, @nordvpnmedia.com, or @nordsec.com. “If the email is from any other address, do not trust it. You should also look out for unusual spelling and characters, like @n0rdvpn.com or @nord-security.biz,” NordVPN says. Also, check the body of the email for unusual spelling or formatting errors. Always treat such emails with suspicion. NordVPN also cautioned creators to be wary of emails or other communication that urge them to take quick action. “Hackers are often worried that if you take time to think about it, you will realize what they are up to. Genuine NordVPN representatives will always approach you in a professional manner and will never pressure you into following links or handing over information,” NordVPN adds. We recommend reading our guide on phishing scams to learn more about how to spot phishing attacks and best practices to protect yourself.
Rise in Sophisticated Phishing Attacks
Phishing emails have been around for decades, but they’re becoming increasingly sophisticated. Cybercriminals are creating fake landing pages spoofing the websites of trusted companies to trick victims into lowering their guard. Last year, cybersecurity researchers at Akamai Technologies revealed that scammers created a fake PayPal login page to snare victims in an elaborate phishing scheme. Furthermore, spelling and formatting issues in phishing emails may be a thing of the past, thanks to ChatGPT. Malicious actors are using generative AI tools to create convincing phishing emails and text messages. “Our teams are doing everything possible to stop scams like these, and you can help us by bringing these emails to our attention. You should also report the sender to your email service provider because doing so can prevent them from further contacting you or scamming other people,” NordVPN’s blog post said. NordVPN has the highest score on our list of the best VPNs of 2023. The company recently completed its third independent audit to verify its no-logging policy. Check out our in-depth NordVPN review to learn more about this VPN.