Fraudulent emails impersonating X notify users of suspicious logins from unfamiliar devices. Clicking links in these emails can lead to credential theft, putting users' accounts at risk for scams.
Fraudsters are sending emails that appear to come from X, notifying users of logins from unfamiliar devices. These messages often provoke concern, as they claim logins are attempted from locations far from the user’s actual residence, such as Arizona for those living in London.
The fake emails closely resemble authentic notifications sent by X, complete with correct grammar and the X logo. However, they typically lack personalization, such as the user's account handle, and contain vague information about the login location.
Users are advised not to click any links in these fraudulent emails. Doing so can redirect them to counterfeit websites designed to capture sensitive information, including usernames and passwords.
ESET's cybersecurity adviser, Jake Moore, highlights key indicators of scams, such as the sender's email address. Genuine emails from X will only come from specified domains, and X never requests passwords via email.
Users should verify the legitimacy of security notices by independently logging into their X accounts or directly visiting the website. If an email is suspected to be fraudulent, it should be reported rather than acted upon.
✨ This summary was generated by AI from the outlets' reporting listed below. It is not independently verified and may contain errors — check the original sources. How BrevFeed works →
Fraudulent emails impersonating X notify users of suspicious logins from unfamiliar devices. Clicking links in these emails can lead to credential theft, putting users' accounts at risk for scams.