Beware of Phishing Scams Using The .zip Domain

They are not Zip FIles

The .zip top-level domain was recently released to the public, and cybercriminals are already using it for malicious purposes. TLDs are the suffixes at the end of domain names, such as .com, .org, and .net. One of the most common ways that cybercriminals are using .zip domains is in phishing scams. Phishing scams are emails or messages that try to trick you into revealing sensitive information, such as your passwords or credit card numbers. Cybercriminals may use .zip domains to trick you into thinking you're downloading a zipped file instead of visiting a malicious website. If you click on a malicious .zip link, cybercriminals could trick you into entering your sensitive information. Here are some tips to spot phishing scams using .zip and .mov domains:

• Be suspicious of links in emails or messages, especially if they contain the .zip domain for anything.
• Hover over links to see the actual URL. Cybercriminals may use fake URLs that look similar to legitimate URLs.
• Do not click on links in emails or messages from unknown senders.
• If you are unsure whether a link is legitimate, go directly to the website by typing the URL into your web browser

In addition to the above tips, you can also protect yourself from phishing scams by:

• Enabling two-factor authentication (2FA) on your accounts.
• Keeping your software up to date.
• Being careful what information you share online.