... spear phishing.
Normally I'm very good at spotting phishing email, but this one has me stumped.
I got THREE emails in the span of 5 seconds, all addressed directly to me, claiming to be from Swiftpage and having PDF attachments that the email indicates are important order verifications.
That by itself put the shield up.
However:
- I have a client who uses Act!. This was purchased from Sage by Swiftpage in 2010.
- My email address was used to facilitate the installation of Act! on this client's PC, but I'm 98.7% certain I removed it from the account upon delivery.
- I downloaded the attachment to my desktop & scanned it with Vipre 2014. Nothing detected.
I've called the client and he tells me he's not ordered anything recently from Swiftpage. Swiftpage, for their part, seems to have a pathological aversion to answering their phones.
When in doubt, nuke it. I've no intention of opening any of these PDFs. Has anyone else received a spear phishing attempt like this recently?