Was this a Phishing Email scam?

[spaceoctopus]

Hi guys, I hope this is the right forum section.

Just a few days ago I got an email, apparently from SDA courier, to rectify some details about my order, by clicking on a link into the email.
Actually I was waiting for some ordered stuff and just for a breath I haven't clicked on the link because I had some suspicions when inspecting the link: it was .ru domain, so I deleted everything!
I think this was a phishing attack, but very realistic, because really many times I got legitimate emails from SDA!

How can you defend yourself from these attacks? Any advice?

Thanks in advance

Make things simple. First install a good antivirus, with web protection features. Then install something like MailWasher. Voila!

MailWasher Pro | Firetrust

 

[ChemicalB]

Thanks guys for your comments, really useful.
@cruelsister don't worry there is no risk I click on that link: really I don't like those shoes

 

[Quassar]

If you click on spam you showed spam bot this mail user is active and you can get more spam ^^ soon even if soft protected you with virus inside it...

Any way boots is something nice alternative than spam with "how increase dildo" xDDDDDDD

 

[cruelsister]

really I don't like those shoes

Oh God! Right??? Perhaps if I was Homeless and found them in the trash...

(ps- note that in the above I used "was" instead of "were". This is an ongoing issue in English grammar. As my sentence was meant to be an Indicative (hypothetical) instead of a subjunctive (improbable), the use of was vs were is optimal. And I'm sure everyone actually cares...)

 

[Deleted member 178]

There is a more insidious type of email that one can get:

View attachment 198169

Clicking on the link above would direct a person to a server somewhere in China on which a person could order- of course inputting Credit card data (and as IF I would ever wear these things anyway!).

Are you even wearing high heels in the snow.? If yes, I marry you right away.
I love high heels

 

[RoboMan]

Are you even wearing high heels in the snow.? If yes, I marry you right away.
I love high heels

You mispelled hot wheels

 

[fl00dz]

Best practice, like most people mentioned is to avoid clicking links in general. It's best to navigate directly to the site. This sounds more like a Quid Pro Quo attack, meaning something for something. This usually involves a telephone, but the threat actor can send out these emails and eventually someone will actually be waiting on an order status, enticing them to click the link rather than relying solely on curiosity. You can scan this link in virustotal though, or like you did, highlight over the link to see where it points to.

 

[Deleted member 178]

You mispelled hot wheels

no no , she has a tremendous collection of shoes, i bet she has some sexy high heels ^^

 

[cruelsister]

You have No idea. During College I was a shoe model.

 

[Atlas147]

As you've said, inspecting the link that the email wants you to click is the most effective way, most phishing mail would have very obvious links that would let you know it's junk right away.

Another way is to check the sender email, although it can be spoofed, most phishing mail just lazily use a random .ru mail which gives it away immediately.

Certain phishing mail are crafted poorly and contain a ton of spelling mistakes, which could be another way to check if the mail is legit.

If everything checks out, only then would I click on the link provided by the email. If I'm still in doubt, or I know that it's a phishing mail but I want to explore the link further (for fun) then I'll activate my VPN and use sandboxie + tor and then visit the link.

 

[bribon77]

A moment @Umbra! .. that she has many suitors. (Among them me) hahaha.

 

[Deleted member 178]

@bribon77 you know, I'm @cruelsister's Dr House, you know the jerk that piss her off but at the end she fell for him. Looool

 

[cruelsister]

And for snow (not that anyone should care) I use Echo's by Caterpillar

Tractor:

 

[codswollip]

View attachment 198201

O wow!

 

[Deleted member 178]

O wow!

Flagged !!! Telos is a boot fetishist LOOOOOOL

 

[Quassar]

Flagged !!! Telos is a boot fetishist LOOOOOOL

He just took security more personalty , and he need/want to have better cover for feet

 

[cruelsister]

God, I love MT!!!! Where else can a topic on trivia like Security elevate itself to a discussion about shoes?

 

[ForgottenSeer 69673]

All I know is if you get attacked by a mob of clowns, go for the juggler.