Customers of Coins.ph are now being targeted with a new variant of phishing mail that entices recipients of a raffle prize amounting to P10,000.

Coins.ph user Raymart Pamplina shared on Facebook the phishing mail that he received showing that he won P10,000 from a supposed yearly raffle of Coins.ph.

Based on the promo page of the company, Coins.ph does not have any yearly raffle that could give users a chance to win P10,000.

This kind of phishing mail is pretty common nowadays especially to brands like Coins.ph whose business revolves around virtual currency and other online financial services.

GCash has similar phishing mails earlier this year primarily targeting users who are fond of joining regular promos.

The phishing link is no longer accessible as of this writing.

The recipient said that he’s not sure how the culprits got his email. A quick check in haveibeenpwned.com, a website showing email addresses that have been compromised in a data breach, suggests that the recipient’s email has been compromised twice – in October 2017’s JobStreet’s data breach incident and in December 2018 when Dubsmash suffered a similar fate.

It is important that for those victims who found their email in the database update their respective accounts and enable two-factor authentication.

We will have this coordinated with Coins.ph for proper action on their end.

Fjordan Allego
Follow me

Related Posts:

By Fjordan Allego

Fjordan Allego aka Fjordz is an IT security practitioner in the Philippines. He maintains a couple of blogs where he shares his views on various topics that he finds interesting. A self-confessed introvert who's mostly active in social media, Fjordz also loves to travel and explore the wonders of the world.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.