The Better Business Bureau (BBB) has issued an alert on their website warning businesses and consumers across the United States and Canada of a phishing scam that uses the BBB name and a false BBB email address in attempt to make the email recipients click on potentially damaging hyperlinks.
A Kennesaw GA business was hacked and is now sending thousands of counterfeit messages to businesses and consumers, purporting to be a complaint filed with the BBB. The incident was reported to the BBB that serves Columbus GA and the surrounding area.
The phony email appears to come from firstname.lastname@example.org and contains a link citing a BBB complaint case number (such as documents for case #263621205…see the letter below).
Clicking on the link directs access to a subdirectory of the hacked website and asks users to download documents related to the complaint. The download is actually an executable file suspected to be some form of a computer virus.
Recipients of the phony email are being advised that any email from the email@example.com address does not come from the BBB and should be considered counterfeit. The BBB is strongly encouraging recipients of this message to delete the message immediately. DO NOT click on the “documents for case” links.