Clone phishing is a cyberattack where scammers duplicate a legitimate email and resend it with malicious links or attachments. The email appears identical to one you’ve received before, tricking you into thinking it’s safe. Attackers often impersonate trusted entities like banks, colleagues, or service providers.
How It Can Happen to Us:
Scammers intercept a real email and modify it slightly, replacing genuine links with fraudulent ones. They might claim an urgent update or request verification, luring victims into revealing sensitive information like passwords or credit card details.
Example:
You receive an email from your bank claiming suspicious activity on your account. The email looks identical to past communications, but the link leads to a fake login page designed to steal your credentials.
How to Protect Yourself:
- Verify the sender’s email address.
- Hover over links before clicking to check legitimacy.
- Enable multi-factor authentication (MFA).
- Avoid downloading unexpected attachments.
- Contact the sender directly if unsure.