Emails like these have become increasingly common
Hackers often use a compromised email account to send catchy messages to that person’s contacts. That is how one clicked message can quickly spread to a full contact list.
The sender may be familiar, but the wording, request, link, or file may be unusual. Treat unexpected account, document, meeting, invoice, and RSVP emails carefully.
They can try to get you to
- Click a link that leads to a fake login page and give over your email password.
- Give permission to connect an app to your Google account.
- Download and run a file that lets an attacker connect to your device.
If you follow through, the attacker may access your email, send messages to your contacts, view sensitive information, access services connected to your email, or gain remote access to the device.