We received an email today purporting to be from LogMeIn however it is really a “phishing attack” designed to trick us into providing our username and password to Logmein.com. What is phishing? Phishing is when someone attempts to trick you into revealing confidential information such as passwords or credit card numbers by sending you an fake email that purports to be from a legitimate company.
As you can see from the screen capture below, the email claims to be from “LogMeIn Central”.
However, looking at the email header information reveals that this phishing attack was launched using an email account that has nothing to do with LogMeIn.
In addition, the hyperlink provided within the body of the email points to the domain name logmein-4031.com which is similar but clearly not logmein.com.
IMPORTANT: Email based attacks can make the hyperlink display on your screen as one website location while taking you to a completely different website when clicked. Consequently, we recommend always hovering over the hyperlink without clicking on it to reveal where that hyperlink will actually take you.
This email was clearly phishing attack however some attacks can be quite sophisticated with very legitimate looking emails. In addition, attackers are constantly revising their techniques to stay ahead of the public's ability to identify the emails as fake. Consequently, it is very important that you remain skeptical regarding most emails that you receive--even of those emails claiming to come from someone you recognize.
When in doubt, call us at 937-454-1984 and we will help you to evaluate the legitimacy of the incoming email.
Screen Capture of Original Phishing Email