QuickBooks Fake Account Suspension Phishing Technique Afoot, Intuit Warns
US-based financial software company Intuit is warning its customers of a new QuickBooks phishing campaign targeting them with fake account suspension notices.
In this new series of attacks, perpetrators impersonate company representatives and try to trick unsuspecting victims into interacting with malicious content.
"We're writing to let you know that after conducting a review of your business, we have been unable to verify some information on your account. For that reason, we have put a temporary hold on your account," the phishing message reads.
"If you believe that we've made a mistake, we'd like to remedy the situation as quickly as possible. To help us effectively revisit your account please complete the below verification form. Once verification has been completed, we will re-review your account within 24-48 hours."
Malicious content within the fake Intuit support team message would redirect the target to a phishing website where perpetrators could steal their personal data or deploy malware on their systems.
Intuit stated that the sender of these messages is in no way "associated with Intuit, is not an authorized agent of Intuit, nor is their use of Intuit's brands authorized by Intuit." The company advises customers to avoid opening these phishing messages and interacting with their content (links or attachments).
It also recommends that users delete the messages from their inbox to prevent their data from being harvested and avoid a potential malware infection. Customers who interacted with the email, clicked a link, or downloaded a potentially malicious attachment should:
- Immediately delete the downloaded attachment
- Change passwords
- Perform a full scan on the potentially compromised system
Intuit also provides an extensive list of security tips that could help users protect themselves against common cyberattacks, such as fake emails, customer support scams, and identity theft.
How to monitor your online privacy during your Thanksgiving trip
November 22, 2022
Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info
November 16, 2022
Bitdefender VPN in 2022: the new, the improved, and the soon-to-be
November 14, 2022
August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War
August 31, 2022
Snake Keylogger Returns in Malspam Campaign Disguised as Business Portfolio from IT Vendor
August 30, 2022
What is medical identity theft and how to protect against it
July 27, 2022