What are phishing emails?
Phishing emails trick users into revealing sensitive information such as login credentials and other personal or financial data. In such cases, hackers use an email address that appears to be legitimate.
How phishing emails are impersonating YouTube channels
A post shared on the YouTube help forum states that phishing emails are imitating channels of both domestic and international YouTubers.
These emails show the sender as [email protected]. They also use questionable subject lines like — “YouTube policy change” and “YouTube team sent you a video.” Furthermore, these emails also appear to be sent from an authentic looking account.
How are these emails affecting users?
Earlier this month, YouTube shared a tweet revealing that it had received reports of phishing attempts using the email address mentioned above. The email sent by cyber criminals impersonated the official address of the service. When users click on the links in these emails, they are redirected to a page where they can review the simulated changes to YouTube’s terms and policies.
According to a Sky News report, some of these emails also warned users that their accounts would be banned within seven days if they chose to ignore the message. Creating a sense of urgency or fear in messages, or threatening users to take immediate action or risk losing access to their accounts, are some typical signs of a phishing tactic.
Some emails also contain a link or attachment to the video. YouTube warned users against clicking on any of them “to avoid additional risks such as hacking”. Links included in phishing emails usually lead to fake login pages or malware downloads.
YouTube has reportedly confirmed that it is aware of the situation and is developing a solution for the same. In the meantime, the company advises users to avoid clicking on links or providing any personal information if they receive an email that looks suspicious.