A new run of “Your password on Pinterest was Successfully changed!” phishing scam email was sent out today, and if you are a Pinterest user who knows that you did not change your password, it may be tempting to go running to the site by clicking the links in the email. Don’t do it!
Below is a screenshot of the scam. Note that the ‘from’ address is, among other things, from pinterrest.net. See the misspelling? And of course email from the real Pinterest comes from Pinterest.com, not .net, anyways.
You may have noticed that the images were not loaded in this email. That is because whenever you load (display) an image in your email reader, you are communicating with one or more computers of the entity that sent you the email. In this case, at very minimum, doing so would tell the scammers that the email was opened by someone. Meaning they know that they got you to at least look at the email.
|Get notified of new Internet Patrol articles for free!
|Or Read Internet Patrol Articles Right in Your Inbox!
as Soon as They are Published! Only $1 a Month!
Imagine being able to read full articles right in your email, or on your phone, without ever having to click through to the website unless you want to! Just $1 a month and you can cancel at any time!
In addition, in this particular email, at least of the images was specifically linked to the email address to which it was sent (the file name for the image was the same as the email address that received the scam), meaning that the scammer is tracking who is opening their email.
This is why we always caution our readers to set their email program to never automatically display images; you can always click the “show images” button if you are confident that a particular email is legitimate, and you want to see the images.
Also remember that you can always hover over any link in an email, and your computer should show where the link actually goes. In this case, instead of going to Pinterest, as it would if it was legitimately from Pinterest, it goes to the scam site “austendeans.com”:
But be careful, because a lot of scam email will have a few legitimate links as well, to further trick you.
As always, the best thing to do when you get an email from a service that you actually use, that is telling you to take some action, is to go with your web browser to that service’s site, and log into your account, and take it from there.
No Paywall Here!
The Internet Patrol is and always has been free. We don't hide our articles behind a paywall, or restrict the number of articles you can read in a month if you don't give us money. That said, it does cost us money to run the site, so if something you read here was helpful or useful, won't you consider donating something to help keep the Internet Patrol free? Thank you!
|Get notified of new Internet Patrol articles!