The 'Password Is Scheduled To Expire' Scam is a Dangerous Phishing Scheme
Yet another online scam is targeting victim inboxes. The new scam is being distributed through malicious spam emails and is in essence an attempt to phish out credentials from victims.
The entire scam is built on a very peculiar idea - the password of the victim expiring on the very next day. Hopefully, users who receive this scam message will have at least a tiny bit of experience using a regular email service and will know that passwords don't tend to expire.
The full text of the scam is as follows:
The password to your email [redacted] is scheduled to expire on DD/M/2022.
To continue using this email and keep same password kindly use the keep same password button below
Keep Same Password Here
IMPORTANT: Failure to carry out above excercise might lead to account lock, unauthorized password reset until necessary action is taken.
Email(s) Due to expire on September 15, 2022
Name Account Owner Active
*** *** Yes
Please note that you can only download or read the message with the email [redacted] this message was sent to
No third-party access.
If victims click the "Keep Same Password Here" button link, they will be redirected to a fake login page that is the phishing portal. Entering your email credentials in the fake login portal will simply hand them over to the scam's operators and your email will likely be taken over and you will lose access to it within the next few hours or days.
Remember you should always employ common sense when you see a disturbing email in your inbox. Do not click unsolicited email links and never enter your login credentials into pages opened through stray links in potentially harmful unsolicited emails.