This is a social engineering combining a phishing email and an attached voicemail file – that can evade many security systems, including Microsoft’s and Google’s, as it appears to be from a legitimate source.
Hackers employ voicemail phishing attacks on WhatsApp users | TechRepublic
Our Social Engineering and Email Cyber Security Course includes the same advice that the article has:
Stop and think!
- Are you expecting this email?
- Do you know this person and do they normally contact you in this way with these types of requests?
- Does the message want you to “hurry up”?
Stop and answer these questions – they will help you spot the malicious emails.
One more bit of advice – if you know the person who sent you the email and only if you know them, then give them a call or send a new email to them, asking them to confirm it is legitimate. Just to repeat myself, do not just reply to the rogue email – create a new one or phone or text.
Want more training to help with your cyber security then we have several course coming up in the next few weeks.
Clive Catton MSc (Cyber Security) – by-line and other articles