14 DAY TRIAL // Cybercriminals continue to leverage the name and reputation of Britain’s Companies House. Back in September, users were warned about malware-spreading emails, and now experts warn them of a phishing campaign.
Dynamoo’s Blog reports seeing fake Companies House emails entitled “Compulsory Companies House WebFiling.”
“Compulsory Companies House WebFiling Update #90721.This is an important notice to inform you as a registered company to update your details. This will make it easier to update our database and keep records of our company. Kindly follow the link below to update your information,” the emails read.
The link doesn’t lead to the genuine Companies House website, but to a fake site that instructs visitors to hand over information such as company name, email address, and email password. Once the data is entered, the victim is redirected to the legitimate Companies House domain.
The information harvested by the cybercriminals is more than enough to target a firm. Once they have access to one company email account, the crooks can launch spear phishing attacks that can help them obtain other sensitive information.
Check out the gallery to see what the email and the phishing website look like.
