3 comments on “Another round of Dropbox Scam Emails Spikes my Blog

    • There is no more a way to prevent phishing emails as there is to prevent someone sending a letter to your home address via bulk mailers. Email addresses are open to all senders by definition to allow people to contact you. Only a spam filter (trainable or otherwise) can deal with these before you see them, and “file” them in the junk mail folder as appropriate.
      The best defense to phishing attempts is to be wary, suspicious and vigilant. Check links & your URL for validity before you click. If you do not know how to read a URL, then check out OpenDNS’s quiz so you can see how good you are at ferreting out fake URLs.
      As a rule, I never click unsolicited links (even if a friend sent it), without some sort of verification that that person sent it (I carefully read the full URL and look for proper domain name and also look for queries everything after the page name and “?”

      Any company worth its salt will not send out unsolicited URLs in their emails with few exceptions. Solicited emails with URLs (like password reset you just requested minutes before) are okay, as are mailing lists for marketing you’ve signed up for, as long as you make sure the wording is in tone and the URLs are valid.

      If a person—known or unknown—sent an email warning of malware on my computer (or calls you with a thick accent), I would first verify through another channel the identity and/or examine the diction used for consistency with known/professional style. (I am known by my friends for my writing style, and will always pick up the phone to warn them when I suspect they’ve been hacked.)

      When in doubt navigate to site manually by typing the known URL instead of clicking a link. dropbox.com will only use a dropbox.com domain, and not “droplꜿox.ru” or some other suspicious URL.

Leave a Reply

Your email address will not be published. Required fields are marked *