Customers of Coins.ph are now being targeted with a new variant of phishing mail that entices recipients of a raffle prize amounting to P10,000.
Coins.ph user Raymart Pamplina shared on Facebook the phishing mail that he received showing that he won P10,000 from a supposed yearly raffle of Coins.ph.
Based on the promo page of the company, Coins.ph does not have any yearly raffle that could give users a chance to win P10,000.
This kind of phishing mail is pretty common nowadays especially to brands like Coins.ph whose business revolves around virtual currency and other online financial services.
GCash has similar phishing mails earlier this year primarily targeting users who are fond of joining regular promos.
The phishing link is no longer accessible as of this writing.
The recipient said that he’s not sure how the culprits got his email. A quick check in haveibeenpwned.com, a website showing email addresses that have been compromised in a data breach, suggests that the recipient’s email has been compromised twice – in October 2017’s JobStreet’s data breach incident and in December 2018 when Dubsmash suffered a similar fate.
It is important that for those victims who found their email in the database update their respective accounts and enable two-factor authentication.
We will have this coordinated with Coins.ph for proper action on their end.
- Phishing Email Analysis Landing Page - September 19, 2024
- BPI to hold Cybersecurity Conference to ‘Fortify Cyber-Resilience in an AI World’ - July 25, 2024
- New Smishing Campaign makes use of Globe SMS Sender ID - May 27, 2024