Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    Scammers Impersonate Zelle via the Lure of “Getting Paid” to Get Paid Themselves

    Zelle impersonation scamA new impersonation scam targets users of the popular pay platform under the guise of the victim having money coming to them and with the goal to obtain Zelle credentials.

    The goal of impersonating is as much to establish credibility as it is to leverage a brand with a large customer base to target. With over 67 million users, Zelle is a perfect brand to use if you’re a scammer looking to take victims for credentials that give you access to money and contacts (who you can further scam).

    According to security researchers at security vendor Avanan, a new Zelle-themed scam includes an email with great presentation and a short URL that takes victims to a lookalike site:

    Zelle-themed impersonation scam

    The goal of these attacks, according to Avanan, is to establish credibility and rush the victim to forgo security checks, falling victim to the many possible scams this initial phishing email can lead to.

    This serves as a reminder that all it takes is the right brand used in a phishing attack against a user utilizing that brand to make that person a victim. Whether it’s consumer-focused attacks – like the Zelle attacks – or ones impersonating business brands (e.g., Microsoft, UPS, banks, etc.), everyone needs to be aware of the possibility of such attacks and how to spot them quickly. Corporate users can undergo continual security awareness training to teach them how to spot an impersonation attack and keep from becoming its’ next victim.

     

    Return To KnowBe4 Security Blog

    Discover dangerous look-alike domains that could be used against you! 

    Since look-alike domains are a dangerous vector for phishing attacks, it's top priority that you monitor for potentially harmful domains that can spoof your domain.

    Our Domain Doppelgänger tool makes it easy for you to identify your potential "evil domain twins" and combines the search, discovery, reporting, risk indicators, and end-user assessment with training so you can take action now.

    DomainDoppelgangerResults-1Here's how it's done:

    • Get detailed results of look-alike domains found similar to your primary email domain
    • You can now quiz your users with your look-alike results
    • Get a summary PDF that contains an overview of the look-alike domains and associated risk levels discovered during the analysis
    • It only takes a few minutes to discover your “evil domain twins”!

    Find Your Look-Alike Domains!

    PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

    https://www.knowbe4.com/domain-doppelganger

    Topics: Phishing

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe to Our Blog


    Security Awareness Training
    Blog RSS Feed
    Comprehensive Anti-Phishing Guide
    All Posts

    Posts by Tag

    See all

    Posts By Topic

    View All

    Get the latest about social engineering

    Subscribe to CyberheistNews