Customers of the online retail giant Alibaba are being specifically targeted with a phishing scam.
The Comodo Antispam Labs said some Alibaba customers have been victimized by a phishing scam where the email uses a spoofed address - email@example.com – and a message that attempts to get people to verify their account information. The email contains links to a dummy site that asks for usernames and passwords, which are then appropriated.
Comodo said the phishing campaign has been in progress for about a week, but it could not say how many people may have been impacted.
“Our team at the Comodo Antispam Labs team identified this specific phishing email through IP, domain, and URL analysis, that surfaced around users having Alibaba.com accounts and trying to steal their data,” said Fatih Orhan, director of technology for Comodo.
Yahoo owns a $32 billion stake in Alibaba, but there is no indication its services or customers are being affected.