A scam message is making the rounds of the web in these hours: it is sent by email and invites users to click on a link to unlock a credit
New scam attempt in progress. The alarm is launched directly by the Postal Police through its Facebook account "Commissariato di Ps Online - Italia": for several days many users are receiving an email message where it refers to a blocked credit at the post office that the person should unlock by clicking on a link and sending a personal document.
This is a scam already attempted in the past and that from time to time comes back into fashion. The hackers send a message via an email address that seems to be the Post Office and invite the person to click on a link to unlock a hypothetical credit of 134.27 euros. The credit is blocked due to inconsistency of data and it is necessary to provide personal documents. The goal of the criminals is to get hold of the ID card, passport or driving license in order to resell the document on the black market. To defend yourself from these attempts to attack phishing is very little: trash the message and report the email address to the Postal Police who will start investigations to trace the sender.
PostePay scam, beware of the message
"We have received a report of a credit of 134.27 Euros from UFFICIO POSTALE 47. The credit has been temporarily blocked due to inconsistency of its data, you can now receive your data and upon receipt of them unlock the credit" This is the message that many users are receiving in these hours on their email addresses. The message is followed by a link that takes the user to a page where he is invited to upload his ID to confirm his personal data. This is a typical case of phishing attack, a strategy used daily by hackers to get hold of sensitive data that can be resold on the dark web.
How to defend yourself from the scam message
There are several clues that make you understand that this is a scam message, although it has been artfully constructed by hackers. Let's start with "Post Office 47." It is impossible for a user to know which Post Office they are talking about. Another clue that should make the user raise his antennae and warn him about the message is the email address. It seems to be the official one of Poste Italiane, but it differs by a letter or a word. The same goes for the page that opens when the hackers invite us to upload our ID: check the URL and you'll find some inconsistencies. Finally, remember that the Post Office, as well as any bank, does not contact you via email for a blocked credit and does not require you to send official documents over the Internet. Always be careful when receiving these types of messages and if you are unsure about the authenticity of a message ask for help from law enforcement.