Malware authors try to trick users by spoofing or imitating emails from legitimate companies. The user will think the email is real and click the links or open email attachments. These links and attachments will install the Malware and start to take over the computer.
A recent report by the blog Krebs On Security shows in the past month some of the most common companies that were spoofed were Verizon Wireless, Twitter, LinkedIn, DHL, Amazon, and the Better Business Bureau.
Spoofed emails are designed to look like the real thing. For example you may receive an email from Verizon Wireless stating your bill is ready to view online but the link in the email goes to a site that will try to install Malware.
Check the Link First
These scams work because people tend not to closely read emails from legitimate companies. When you receive any email first look at the URL of the link. In many email clients you can hover over the link with the mouse and the real URL will appear either at the bottom of the page or in a popup message.
The text of the URL in an email may say www.amazon.com but it really goes to www.amazon.scam.com
To be safe type the company URL into the web browser directly to log in rather than clicking on the link in the email.
View the SecureNU site for more information about spotting a Phishing And Scam Email.