Funeral Phishing Scam

My wife Kathy received a phishing e-mail today that is very convincing, especially for older computer users:

FuneralPhishing

Everything about this message is correct on the surface, down to the address and phone numbers listed in small print.  Three things, all of them subtle, point to this being a phishing scam:

  1. Neither the person to whom the e-mail is addressed nor the alleged deceased friend are named.  E-mails that are generic like this should always be considered suspect.
  2. The user is asked to click on a link to get more information.  Hovering the mouse pointer over the link without clicking reveals that it does NOT point to the funeral home’s website:FuneralPhishing2
  3. Finally, the sender’s e-mail is admin@materstudiorum.ru.  Addresses ending in .ru are hosted in Russia, which is one of the top sources of malware infections in the world.  Unfortunately, not all e-mail clients are configured to show this, and a lot of users would only see “Clearwater & Largo Memorial Funeral Home,” not the actual address behind it.

In today’s digital world, users need to approach e-mail messages from the standpoint of “it’s a scam until proven otherwise.”  Even seemingly legitimate messages from people you have in your address book can be scams if one of those people has a compromised computer system.  When in doubt, don’t click on any embedded links or open any attachments until you have verified through other means that they are legitimate.

The criminals who send out phishing e-mails such as this one are always researching new methods and designs to make them appear more legitimate and convincing.  Security and antivirus software are all fine and good, but educating yourself on the methods they use and staying informed on the latest threats is your best defense against their tactics.  As a colleague of mine says regarding keeping computers secure, “You have to be right 100% of the time.  They only have to be right once.”

One Response to Funeral Phishing Scam

  1. Ron March 9, 2014 at 4:00 pm #

    While I’ve not encountered this PARTICULAR scam, I have had the “joy” of receiving others. Thankfully, I had been warned by friends like you, Eric, some of the things to look for. Even assuming you had considered that something MIGHT be legitimate, using the example of the funeral parlor, you could open another browser window and go to the ‘real’ parlor’s website. They will have any information about times and gatherings on behalf of their client families on their page.

    But yes, never click links in emails unless you are 100% confident that it has indeed come from who it claims.

Leave a Reply