The approach in this scam campaign is different, instead of feeding the recipient with a dubious link to click on, they simply asked the recipient to reply them, else they will deactivate his account.
Although the email looks legitimate, a proper scrutiny revealed it was clearly a scam as the reply-to email accounts weren’t Google’s. We believe the aim of the attacker is to send this message to as many people as possible and if anyone replies, send them a web link with a fake/look-alike Google Login page and steal the user’s credentials.
KEY LEARNING FROM THIS EMAIL:
- Always take a close look at the email address contained in the From and Reply-To sections of any email you receive. Pay attention to these email addresses as they often indicate the legitimacy of an email.
- If you feel something just isn’t right about the email, please do not reply. An analysis of this email for example revealed that, there was a malicious file linked to the email.