The email notice seemed genuine enough. It had a bright orange background and red letters — the colors of the DHL shipping company. It was the DHL logo. There was a tracking number, which went to a webpage with the “EXPRESS” trademark of DHL on it. On that page was also a pulsating button saying “Confirm.”
I backed out of that and went back to the email.
In the “From:” field of the email was “DHL.” Tap on that (if on a smartphone), or hover over it with the mouse arrow (if on a computer), and the actual address will sometimes appear. In this case, the domain name (what appears after the @ symbol) should be DHL. Instead, it was the domain of a website that had obviously been compromised as a cover for the email.
Something is “phishy.”
For the uninitiated, that term, according to Wikipedia, is used “where an attacker sends a fraudulent (e.g., spoofed, fake, or otherwise deceptive) message designed to trick a person into revealing sensitive information to the attacker or to deploy malicious software on the victim’s infrastructure like ransomware.”
The next thing I did was to go to the DHL website. (At this point, I could also have used a search engine to look for “DHL” and “email” and “shipping scam.”) DHL’s website had this notice it had posted about six weeks ago:
READ MORE FROM GADGET DADDY:
“DHL is currently the target of a major global scam and phishing attack. We are working hard to block the fraudulent websites and emails and remove them from the internet. If you have…
