February 4, 2022

Intuit warns its customers of an ongoing phishing campaign. This campaign masquerades as a company to trick customers into clicking on a malicious link embedded in the mail.

The impersonating mail informed customers that their Intuit accounts were disabled for security reasons. To restore the disabled account, the email instructs customers to click on an embedded link.

Clicking on the link redirects customers to an attacker-driven phishing site, where their devices are infected with malware while collecting financial or personal information.

To combat the phishing campaign, Intuit shared tips with customers who clicked and those who received the email but did not click on the link.

Customers who received the email, are advised not to click on any embedded links or open attachments and to delete the emails to avoid being infected with malware.

Customers who have already clicked on the links or opened attachments should take three measures: they must immediately delete all downloaded files, scan their systems with an up-to-date anti-malware solution and finally change their passwords.

For more information, read the original story in BleepingComputer.