Geeks2U Promise
We guarantee you'll love our fast, friendly service - or we'll refund your money.  
133,572 Happy Customers & Counting
Need tech support?
1300 769 448
Extended hours, 7 days a week
Home  /  geekspeak  /  Watch out for shopping spam scams

Watch out for shopping spam scams

Received an invoice or receipt for something you don’t remember buying? Don’t open the attachment – it’s almost certainly a virus.

Scammers love tricking people into opening attachments, but most of us have enough sense to realise that we haven’t won a million pounds a in UK lottery or made friends with a Nigerian prince. We are however more likely to fall for something much more mundane, like a receipt for something we didn’t actually buy.

Case in point, there’s an email sitting in my inbox supposedly from Kelley Singleton with the subject line “Customer Invoice” and an attachment called: Invoice_scan.jpg.zip. The body of the email reads:

Good evening!

This is a payment receipt sent on 15/02/2014
Total: $294.94
Due Date: 10/02/2014
Transaction identification number: D-12349844
Remaining Balance: $49.92
Payment method: Cheque (Check).
Status: Success

Payment details is in the attachment.
*************************************

If you have any questions, check out our site. If that doesn’t cover it, please don’t hestitate to contact us on support and we’ll be happy to help you out.

No malware found in this email. Checked by NANO Antivirus.

Straight away you can tell this a scam because a legitimate business is very unlikely to use an email address like pithyy630 to send out official correspondence. Of course the scammer is hoping you won’t notice this because you’re too busy trying to remember what you bought for $294.94. It’s a lot more plausible than being told you’ve won the lottery.

You might even panic and think that it’s billing error, or that your online shopping account has been hacked. There’s not enough detail in the body of the email to determine exactly what you bought, because the scammer wants you to urgently open the attachment without stopping to think that it’s actually a virus designed to infect your computer, to steal passwords and generally wreak havoc.

The second clue that this is spam is that the attachment is a zipped file. This could contain anything, even though it gives you the impression that it only contains an image file. Also watch out for files with .exe on the end. Even PDF and image files can be dangerous. The golden rule is never, ever open attachments from people you don’t know, no matter what they claim to be.

Apart from the misspelling of hesitate, there were two other smaller clues which tipped me off that this is a scam. Firstly, it claims I paid by cheque when I haven’t written out a cheque for years. Secondly, it wasn’t sent to my main email address. It was sent to a secondary address which I only use when I sign up for online shopping sites.

The only way scammers got their hands on this address was by hacking into one of these sites and stealing the list of customer email addresses. Or buying a stolen list off someone else. If a website’s security is that poor then the hacker might also have my password, which is why it’s so important not to reuse passwords across different sites.

There are plenty of variations on this scam. Sometimes they claim to be from the tax office, providing details of your tax return. Other times they claim to be from a courier company like FedEx, hoping that you’ll mistake it for an email relating to a real package that you’re waiting for.

Unlike lottery and Nigerian prince scams, these scams aren’t preying on people’s greed. They’re simply trying to catch you off guard in the hope you’ll open the attachment without stopping to think twice. Don’t fall for it. However mundane an email appears, always stop and think before you open an attachment. When it doubt, don’t do it.


Recent News

As I’m writing this, the Consumer Electronics Show that would usually take place in Las Vegas is instead being staged entirely online, due to the ongoing pandemic issues. CES has for the longest time been the place where big consumer electronics companies show off their latest TV innovations, and while it’s not debuting this year,

Like many Australians, I survive our hotter summer months thanks to the invention of air conditioning. Not that I can’t sweat it out when I have to, but equally, a good AC unit can make a hotbox of a home into something considerably more comfortable. Air conditioning isn’t a new invention – I looked it

While it has a lot of products in the tech space, for many people Google is synonymous with the product that made its fortune in the first place. Indeed, for a lot of folks, the words “search” and “Google” are freely interchangeable when they’re talking about looking up online content, no matter what that content

We’ve had speakers in our homes for many years now, but the advent of the “smart” speaker is a relatively new phenomenon. If you’re wondering what the difference is, it’s fundamentally to do with the inclusion of a microphone, an internet connection and a smart assistant that can hook into streaming music services as well

Coronavirus (COVID-19) Update

Learn about the precautions we are taking and our new contactless pick-up and remote service options. Read More
Get help setting up your home office or homework area today. Learn More