{"id":11370,"date":"2022-10-24T12:55:21","date_gmt":"2022-10-24T12:55:21","guid":{"rendered":"https:\/\/gridinsoft.com\/blogs\/?p=11370"},"modified":"2023-11-01T16:54:06","modified_gmt":"2023-11-01T16:54:06","slug":"norton-spam-email","status":"publish","type":"post","link":"https:\/\/gridinsoft.com\/blogs\/norton-spam-email\/","title":{"rendered":"What is Norton Scam Email? Tips to Protect Yourself"},"content":{"rendered":"

Norton scam email is a tricky phishing campaign that pretends to be an official mailing from Norton. It generally aims at users\u2019 sensitive information, including banking data. Let\u2019s figure out what these spam emails are, how dangerous they are, and how you can counteract them.<\/p>\n

What is Norton Scam?<\/h2>\n

Norton scam email is a common name for dubious emails that may come to anybody, regardless if they are the users of their products or not. These emails may potentially contain different text and disguise, same as any other phishing<\/a>. But the most common is a notification about the subscription purchase or renewal<\/strong>. People receive a message that says their card was charged with a hefty sum, and to cancel it and receive a refund you should follow the instructions. The sum varies from $200 to $1000<\/strong>. This is not very realistic as these emails usually come to single users, who will never buy a corporate license or a one for 10+ machines.<\/p>\n

\"Norton
Fake invoice from Norton<\/figcaption><\/figure>\n

Still, the sum is pretty scary and attracts the user’s attention. Phishing Norton emails may occasionally contain a link to a third-party site or a contact number of tech support<\/strong>. Both of them, as you can already guess, have nothing to do with the real services of a company. Villains may use a single phishing page for multiple spam campaigns<\/a>.<\/p>\n

\"Norton
The example of a letter that states the sum of almost $1000<\/figcaption><\/figure>\n

The link may be plain text, as well as inside of the button or email text. It leads you to a phishing page, that will ask for your personal information \u2013 name, email address, phone number, et cetera. In some cases, they can ask you about the bank card details, including the security code (CVV\/2)<\/strong>. Later, this information will be used against you \u2013 after selling it to a third party on the Darknet<\/a>.<\/p>\n

The Tech support number is no good as well. There, crooks who mimic the real support<\/a> will try to lure out your sensitive information, same as in the case with a link. The other thing which repeats the previous method is the behavior around the collected data \u2013 they sell it on Darknet forums as well<\/strong>.<\/p>\n

How dangerous is the Norton scam email?<\/h2>\n

Same as any other phishing, it aims at grabbing as much personal information as possible. At a glance, you may think it is not that bad, as you share this information<\/a> with different online services too. However, most of them keep this data a secret, as there are data protection laws that punish data selling. Meanwhile, phishing actors are not bound by any kind of laws<\/strong>, as the very essence of phishing is outlawed.<\/p>\n

\"Darknet
Darknet prices for leaked data, divided by different types<\/figcaption><\/figure>\n

It is unlikely to meet a benevolent person among the buyers for leaked information on the Darknet. If you\u2019ve shared your personal information, that will be the base for more precise, spear phishing<\/a>. Crooks will try to perform a more sophisticated fraud<\/strong> to make you pay them by mimicking a thing you\u2019re expecting. Leaked bank card details, on the other hand, give them the ability to manage your money as they want \u2013 and they can find a way to circumvent the bank\u2019s safety measures. Carding has become way less widespread over the last 5 years, but remains a threat.<\/p>\n

How to avoid being fooled with email scams?<\/h2>\n

There are a few rules that will help you to detect and avoid any questionable emails. They do not require anything specific and only rely on your attentiveness. Even the most sophisticated scams cannot be 100% identical<\/strong> to genuine emails<\/a>. When it comes to some massive mailing with low-quality phishing emails, it is very easy to bust their disguise.<\/p>\n

Unrealistic claims or offers<\/h3>\n

Do you really think Norton will charge you without your knowledge<\/strong>? Or offer a 1-year license for free, just for taking part in a quiz? When the things in the letter look untrustworthy, get some other ways to verify such offers. For example, you can check your bank account and see if there were any debit operations as described in the letter. On the official Norton website, you can see if there are any active subscriptions, and also promotions or giveaways. Still, emails may repeat the promotions<\/a>, but contain a different link, so you will get into a fraud either.<\/p>\n

Email addresses<\/h3>\n

No one can copy the email addresses of genuine mailing services, used by companies. And phishing actors sometimes don\u2019t even try to \u2013 they apply using hijacked accounts<\/a> or single-use emails, created only for spamming. Hence, seeing a letter that pretends to be a message from Norton, and is sent from ol1209130@bilibili.com is already fishy<\/strong>. In advanced scams, crooks may try to spoof the genuine address<\/a> by changing the letters with numbers, to make them harder to distinguish from real ones in haste. For example, you may witness the nort0nsupp0rt@norton.com instead of support@nortonlifelock.com<\/strong>. Here is the list of address domains used by Norton in their official mailing \u2013 crooks cannot use or counterfeit it in any way.<\/p>\n

\"Fake
The example of a fake Norton invoice sent from the email address of individual user. Probably, it was hijacked earlier.<\/figcaption><\/figure>\n
<\/span>List of genuine Norton email addresses domains<\/div>
\n
\n@nortonlifelock.com
\n@norton.com
\n@identity.norton.com
\n@login.norton.com
\n@securenorton.com
\n@secure.norton.com
\n@lifelock.norton.com
\n@mylogin.norton.com
\n@myidentity.norton.com
\n@family.norton.com
\n@lifelock.com
\n@mail.nortonstore.hk
\n@mail.nortonstore.cn
\n@mail.nortonstore.tw
\n<\/div><\/div>\n
\n@mail.nortonstore.kr
\n@mail.nortonstore.jp
\n@mail.norton.com
\n@email.norton.com
\n@e-mail.norton.com
\n@identityprotection.norton.com
\n@subscriptions.norton.com
\n@zuberance.com
\n@ifeelgoods.com
\n@trustpilot.com
\n@club-off.com
\n@m.onetrust.com
\n@cleverbridge.com
\n@creditview.co.uk
\n<\/div><\/div>\n<\/div><\/div><\/div>\n

Typos and poor email design<\/h3>\n

Can you imagine official letters from a worldwide-known company, whose design is poor and the text is full of errors?<\/strong> Most companies hire several writers who review the patterns used for automated emails and check up on all hand-made correspondence. Seeing a genuine letter that looks like a kid’s scribble is hardly a case. Be sure that it is likely a scam<\/a>; you can additionally confirm your expectations by looking for the signs we mentioned above<\/strong>.<\/p>\n","protected":false},"excerpt":{"rendered":"

Norton scam email is a tricky phishing campaign that pretends to be an official mailing from Norton. It generally aims at users\u2019 sensitive information, including banking data. Let\u2019s figure out what these spam emails are, how dangerous they are, and how you can counteract them. What is Norton Scam? Norton scam email is a common […]<\/p>\n","protected":false},"author":7,"featured_media":11387,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"content-type":"","_sitemap_exclude":false,"_sitemap_priority":"","_sitemap_frequency":"","footnotes":""},"categories":[4],"tags":[1007,131,674,681],"class_list":{"0":"post-11370","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-tips-tricks","8":"tag-norton","9":"tag-phishing","10":"tag-phishing-scams","11":"tag-spam-email"},"featured_image_src":"https:\/\/gridinsoft.com\/blogs\/wp-content\/uploads\/2022\/10\/norton-spam-email.webp","author_info":{"display_name":"Stephanie Adlam","author_link":"https:\/\/gridinsoft.com\/blogs\/author\/adlam\/"},"_links":{"self":[{"href":"https:\/\/gridinsoft.com\/blogs\/wp-json\/wp\/v2\/posts\/11370","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/gridinsoft.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/gridinsoft.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/gridinsoft.com\/blogs\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/gridinsoft.com\/blogs\/wp-json\/wp\/v2\/comments?post=11370"}],"version-history":[{"count":17,"href":"https:\/\/gridinsoft.com\/blogs\/wp-json\/wp\/v2\/posts\/11370\/revisions"}],"predecessor-version":[{"id":17434,"href":"https:\/\/gridinsoft.com\/blogs\/wp-json\/wp\/v2\/posts\/11370\/revisions\/17434"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/gridinsoft.com\/blogs\/wp-json\/wp\/v2\/media\/11387"}],"wp:attachment":[{"href":"https:\/\/gridinsoft.com\/blogs\/wp-json\/wp\/v2\/media?parent=11370"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/gridinsoft.com\/blogs\/wp-json\/wp\/v2\/categories?post=11370"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/gridinsoft.com\/blogs\/wp-json\/wp\/v2\/tags?post=11370"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}