Several Internet users have reported the attempted fraud on social networks, sharing screenshots of the suspect message. This one carries the object “Action required: reset your password” and claims that a 1PASSWORD monitoring system has detected an account compromise. The message insists on the emergency: ” Please reset your password within 24 hours to guarantee the safety of your account. If you don’t, your access will be temporarily suspended. »
An alarming false (but false) message
The email contains a reset link which directs towards a fraudulent site imitating the interface of 1Password. Once on this page, the victim is invited to enter his main password and his secret key, two essential elements to access his safeword safe.
Users have worried about a potential data leak in 1Password, fraudulent emails being sent to addresses associated with their accounts. The company reacted quickly by denying any security fault. Pedro canahuati, technological director of 1Password, confirmed that this phishing attempt results from no intrusion into their systems. “” We immediately launched an investigation, reported the activity and requested the abolition of fraudulent domains “He said.
To avoid falling into the trap, some simple rules must be respected: never click on a reset link sent by email, but rather access the official site directly by typing the address in his browser. In addition, 1Password will never ask for the secret key by email, because it is only stored on user devices.
To identify this type of scam attempt, several clues are to be monitored. First, the sender email address: fraudulent messages come from unknown domains and not from the official site of 1Password. Then, the urgency put forward in the message is a classic sign of phishing: fraudsters want to push their victims to act quickly without thinking. Finally, any unusual request, such as seizure of the secret key, must alert.
If in doubt, it is better to check directly on the official website or contact the 1PASSWORD support. Not yielding to panic remains the best defense in the face of this kind of ploy. A good reflex to adopt in front of the increasingly sophisticated cyberrencies.
🟣 To not miss any news on the Geek Journal, subscribe to Google News. And if you love us, .
