Unknown persons have registered the domain name us-leister.com in recent days and are using it to send emails in the name of the Leister Group with fraudulent intent. In addition, emails have been sent with a forged sender address (martin.zingg@leister.com) that contain very unusual requests in the text (CEO fraud1).
We therefore recommend the following measures:
- Never reply using “Reply” to emails with such unusual content. Always verify via the officially known contact details of the Leister Group.
- Check2 the sender address of incoming emails. The correct return addresses for the Leister Group are as follows: xxxx.xxxxxx@leister.com xxxx.xxxxxx@Leister.in xxxx.xxxxxx@Leister.jp xxxx.xxxxxx@Leister.it xxxx.xxxxxx@Leister.nl xxxx.xxxxxx@Leister.be xxxx.xxxxxx@Leister.cn
- Block the domain us-Leister.com on your firewalls, proxy servers, and mail gateways.
We would like to apologize for any inconvenience caused and hope that this information makes a small contribution to the fight against cybercrime.
1 CEO fraud is a method of fraud in which attackers pretend to be a CEO, manager, or executive and ask recipients, for example, to transfer money to a specific account. When the attacker uses email as the means of communication, CEO fraud is a form of business email compromise (BEC).
2 Note: it is not possible to reliably verify the email address in the sender line, because this display can be forged (address spoofing). The check must be carried out by hovering with the mouse pointer (up to Office 2016) and in newer versions via “File - Properties”.
