You might be wondering what happens when all those millions of credentials are stolen and sold on the dark web. Cybercriminals are using the information in various ways. One of them is posing as legitimate colleagues in phishing emails.
In some cases, they send a message with the subject line of “unpaid invoice” or something similar. Attached to the email is a document that includes common malware that will infect your computer and steal your online banking credentials.
To avoid falling victim to this, and similar scams, watch for some of these as red flags: