According to this message, your email account password is about to expire. It instructs you to click a link if you want to keep using the same password.
Supposedly, your email service provider’s administrator sent you the message.
However, your service provider did not send the email and your password is not about to expire as claimed. Instead, the email is a phishing scam designed to steal your account login credentials.
If you click the “Keep Password” button, a fraudulent login page will open in your browser. The login will ask you to provide your email address and email password. Once you submit these details, you may see a message advising that you have successfully retained your existing password.
But, now, online crooks can collect your login details and use them to hijack your email account.
Once they have gained access to your account, they can use it to send spam, scam, and malware emails in your name. If the email account is linked to other services such as online storage and app stores, the scammers will be able to take control of these services as well.
Email account phishing scams like this are very common and take many forms. Be wary of any supposed account notification message that claims that you must click a link to deal with an account issue or update details.
It is always safer to log in your email account by entering the address into your browser’s address bar or via a trusted app. If there is an account issue that needs to be dealt with, you will likely see a notification about it after you login.
Note: The version of the scam that I received claimed to be from the administrator at one of my Hoax-Slayer domains. Given that I AM the “administrator”, it’s rather strange that I can’t recall sending it to myself. 🙂
A screenshot of the scam email:
Transcript of the scam email:
The password of your email account […] will expire on 31/7/2020
Please click below if you want to keep using same password.