You probably know that the Eastern European cyber mafia does their beta testing in the U.K., before they "export" their criminal campaigns to America. Here is a heads-up of a social engineering phish that was spotted in Ireland, and that your users may receive in their inbox in the near future. Warn them ahead of time!
ESET Ireland warned: "A dangerous email spam message is dropping into Irish mailboxes, pretending to come from WhatsApp. Its subject says “Missed voicemail” and the content of the mail just says “New voicemessage” and has a link called “Play”.
I suggest you send the following to your employees, friends, and family. Feel free to copy, paste, and/or edit:
Criminal hackers are constantly trying to trick people into clicking on links or open attachments they did not ask for. Their new "scam of the week" is to send you an email that looks like it comes from WhatsApp and claims it is a voice mail left for you. It's not.
Do not click on the "Play" button. If you do, your computer will get infected with malware which can cause your identity to get stolen, or all your (or the organization's) files held for ransom.
Here is a general safety rule: Instead of clicking a link in an unverified email claiming it’s from WhatsApp (or any other social media) log in to your WhatsApp account the standard way instead and check for any messages there. Remember: "When in doubt, throw it out!"
Source: KnowBe4 Blog