#CyberThreat Thursday: Callback Phishing

Created by Laurie Fox
Jan 25, 2023
1 min read

originally published in Today at Geneseo on December 1, 2022

Callback phishing attacks are emails pretending to be receipts for high-priced subscriptions or products designed to lead to confusion by the recipient as they never made this purchase. They usually purport to come from PayPal, Norton, McAfee, or Geek Squad. The message may include accurate personal information culled from past data breaches to lend a facade of legitimacy to the email.

Enclosed in the email is a phone number the recipient can call to learn more about this transaction and cancel it. This is the hook. When the victim calls the "customer service" number, they are tricked into installing malware on their computer or disclosing personal financial information.

If you receive a callback phishing email, please report it!