The attackers cleverly wrapped their intentions in an alluring package.
Shein, one of the most popular shopping services in the world, recently became an unwitting accomplice in hacker attacks that parasitize the brand's popularity. According to the Harmony Email research group, over the past month, more than 1,000 cases of phishing attacks were identified, where attackers posed as Shein representatives who promised customers gifts.
The deception process begins with an incoming email with an attractive subject line: "Order confirmation from Shein". It declares the receipt of a so-called "mystery box" with a random gift from the brand, which only needs to fill in the delivery information. However, the link in the email body, unfortunately, does not lead to the brand's official website, but to a fake web page created to steal users personal data.
Such phishing attacks often use the popularity of well-known brands to mislead consumers, further attracting their attention with tempting promises.
Creating a sense of urgency and using an email address consisting of a random set of letters are bright markers of illegitimacy of an email. In addition, the fake emails examined by experts also lacked Shein logos and branding.
Consumers should be especially careful: you should not follow links from questionable recipients. And if there is such a temptation, you should always carefully check the source of the letter and the final link itself for legitimacy.
It is important to pay attention to the correct spelling of the sender's URL and name, as well as to the presence of spelling errors in the message text, which may be present in a fraudulent newsletter, but not in the official one, especially if it is a question of such a large brand as Shein.
In general, you should not trust links and information from unknown or questionable sources, even if they look legitimate. Attention to details, such as spelling, logos, and links to official resources, can protect you from fraud and identity theft.
Only awareness and common sense in the modern digital world are the best protection that will allow you to avoid fraudulent schemes and other kinds of deception.
Shein, one of the most popular shopping services in the world, recently became an unwitting accomplice in hacker attacks that parasitize the brand's popularity. According to the Harmony Email research group, over the past month, more than 1,000 cases of phishing attacks were identified, where attackers posed as Shein representatives who promised customers gifts.
The deception process begins with an incoming email with an attractive subject line: "Order confirmation from Shein". It declares the receipt of a so-called "mystery box" with a random gift from the brand, which only needs to fill in the delivery information. However, the link in the email body, unfortunately, does not lead to the brand's official website, but to a fake web page created to steal users personal data.
Such phishing attacks often use the popularity of well-known brands to mislead consumers, further attracting their attention with tempting promises.
Creating a sense of urgency and using an email address consisting of a random set of letters are bright markers of illegitimacy of an email. In addition, the fake emails examined by experts also lacked Shein logos and branding.
Consumers should be especially careful: you should not follow links from questionable recipients. And if there is such a temptation, you should always carefully check the source of the letter and the final link itself for legitimacy.
It is important to pay attention to the correct spelling of the sender's URL and name, as well as to the presence of spelling errors in the message text, which may be present in a fraudulent newsletter, but not in the official one, especially if it is a question of such a large brand as Shein.
In general, you should not trust links and information from unknown or questionable sources, even if they look legitimate. Attention to details, such as spelling, logos, and links to official resources, can protect you from fraud and identity theft.
Only awareness and common sense in the modern digital world are the best protection that will allow you to avoid fraudulent schemes and other kinds of deception.
