Remove Aruba.it email scam

aruba.it email scam refers to phishing emails that aim to phish users’ aruda.it login credentials. Several somewhat different phishing campaigns try to phish aruda.it credentials, though they all usually claim that the recipient’s domain is about to expire and needs to be renewed, or that automatic renewal was rejected.

 

 

Aruba is an Italian company that provides web hosting and domain registration services. Unfortunately, as is the case for most companies with sizeable customer bases, their customers are often targeted by phishing campaigns.

This particular Aruba.it phishing campaign involves sending users emails claiming that the domain linked to the email address is about to expire. The email claims that if the recipient wants to not lose access to all associated services (e.g. email), they need to initiate the renewal process. This particular Aruba.it email scam claims that users only need to pay €4,37 for the renewal. They can supposedly initiate the process by clicking the “RINNOVA IL DOMINIO” button in the email.

If users click on the button, they will be taken to a fake Aruba website (e.g. it.aruba-vu.com) where they will be asked to log in to their account. If users do type in their credentials, they will be sent to the cybercriminals operating this phishing campaign. This can allow malicious actors to hijack users’ accounts and cause damage.

The full Aruba.it email scam is below:

aruba.it

Gentile Cliente
Ciao,
ti informiamo che il dominio a cui risulta collegato questo account di posta, scadrà il giorno 30/09/2024. Desideriamo ricordare che, qualora il dominio non venga rinnovato entro tale data, questi e tutti i servizi associati, comprese le caselle di posta verranno disattivate e no npotranno più essere utilizzate per l’invio e la ricezione.
Fattura N: 123
Importo dovuto: 4,37€
Data di scadenza: 30/09/2024
Puoi accedere alla tua area clienti per visualizzare e pagare la fattura su
RINNOVA IL DOMINIO

How to recognize a phishing email

Most phishing campaigns are generic and target many users with the same email. More sophisticated phishing campaigns are usually reserved for specific and high-profile targets. Fortunately, most users are likely to receive generic and easily recognizable phishing emails.

Malicious actors often disguise phishing emails to make them look like they were sent by legitimate companies. For instance, this Aruba.it email scam email is disguised as an email from Aruba. However, it does not resemble a legitimate email that Aruba would actually send so if you use their services, you should be able to identify it as malicious.

When dealing with an unsolicited email that asks you to do something (e.g. click on a link or open an attachment), the first thing to check is the sender’s email address. Low-effort phishing emails are usually sent from very random-looking email addresses so they are especially easy to recognize. Legitimate companies do not use random email addresses to avoid looking unprofessional. More sophisticated phishing campaigns will have legitimate-looking email addresses, and those can be a bit more difficult to identify. However, all you have to do is look into whether the company the sender claims to be from uses the email address.

Another thing to take note of is how an email addresses you. When you receive an email from a company whose services you use, you will always be addressed by name. Using customers’ names makes emails more personal. However, malicious actors rarely have access to personal information unless the phishing campaign is very sophisticated. Thus, phishing emails usually use generic words to address users, including “Customer”, “Member”, “User”, etc. This particular Aruba.it email scam addresses users with the word “Client” in Italian, and that is an immediate giveaway that you’re dealing with a phishing or a scam email.

Grammar and spelling errors are clear indicators of a phishing email and a good way to spot them. Legitimate companies typically do not make mistakes in their emails because they appear unprofessional. This is especially true for automatically generated emails. However, phishing emails almost always contain errors, whether in spelling or grammar.

Phishing emails often claim that there is a problem with your account to prompt you to click on the provided links. This is a common strategy, even in emails like this Aruba.it email scam. Whenever you receive an email asking you to take action, instead of clicking on any links, manually log in to your account and verify if there is a genuine issue. This should be done even if the email seems completely legitimate. In this case, if your domain was about to expire, you would see this in your account if you manually log in to aruba.it.

Lastly, always check the URL of a site before logging in. Phishing sites are designed to appear identical to legitimate sites, but the URL will always expose them. If a site’s URL seems even slightly suspicious, do not enter your credentials.

Aruba.it email scam

The email is not harmful if users do not interact with it. They can just remove Aruba.it email scam from their inboxes. However, if users have clicked on the link and provided their login credentials, they need to change the password immediately. If the accounts can no longer be accessed, users need to contact Aruba to get access to their accounts back.