Mailboxes are currently flooded by password reset, newsletter or account confirmation mails – it's an attack

[Gandalf_The_Grey]

Content source

https://borncity.com/win/2024/02/25/mailboxes-are-currently-flooded-by-password-reset-newsletter-or-account-confirmation-mails-its-an-attack/

A German blog reader contacted me this week and reported a worrying observation made by one of his customers. The customer is receiving a flood of requests to reset his passwords, to confirm a newsletter or a now user account. The messages really do come from the services in question. At the moment, it is still somewhat unclear what exactly is behind this. But my suspicion is, that this email flood shall hide a breach of an account.

It's suspected, that attacks on various content management systems (CMS) and websites are made, where password resets are triggered automatically. Or bots created newsletters and new accounts on different services in behalf of a victim. It is possible that something is triggered in brute force attack attempts on these systems in terms of password resets. However, I have a case in mind from 2020 where a PayPal account hack was to be concealed by something like this. Here is, what I know so far.

Mailboxes are currently flooded by password reset, newsletter or account confirmation mails – it's an attack

[German]A German blog reader contacted me this week and reported a worrying observation made by one of his customers. The customer is receiving a flood of requests to reset his passwords, to confirm a newsletter or a now user account. The messages really do come from the services in question. At...

borncity.com

 

[n8chavez]

I have been getting a lot of email, supposedly from pcloud, that says my account was signed into and to verify it was me. However, the from address is not a pcloud address. But it looks identical to one that pcloud has sent before. Be on the look out for things like that too, I guess.