選單
中文 (繁體)

Can you get hacked by opening an email?

Almost everyone today has their own email account, and many have more than one. People use email addresses to create accounts, to register in and to log into various services, and for personal and professional correspondence. Often, email is listed as one of the contact options in social networking profiles and on various websites. This is why getting your email address compromised by scammers can lead to very severe consequences.

Good news is, simply opening an email is often not very dangerous, however it may reveal some information such as your IP address or location, potentially leading to more serious attacks such as doxxing or targeted phishing. But the real threat comes from phishing links included in scam emails and malware-infected attachments. These can lead to compromised personal information or viruses getting onto your device, so it is important to be careful about what you click on or download from emails.

In this article, we'll explore whether you can get hacked by opening an email, the risks associated with interacting with emails, and how to protect yourself from scammers.

The dangers of email attachments

Sending spam with malicious attachments is a very popular way to spread malware and infect people's computers on the Internet. Many years ago, it was laughably easy to catch a virus via email — all you had to do was open the email. The thing is, in those years you could use javascript in email, and mail clients had vulnerabilities that could be used to gain access to the user's PC. You could also get a virus by viewing mail in a browser — thanks to the same scripts.

But now all that has changed. It is highly unlikely to catch a virus simply by opening an email or visiting a website. Major email services use antivirus software that scans emails for phishing and attachments for malicious code. If you use a modern browser or mail client, it is virtually impossible for a simple email to infect your device with a virus.

But emails may include attachments that can contain viruses. In this case, the email is the carrier of malware to the user's device. Popular services scan attachments for viruses, but any antivirus can fail. Email attachments should be treated with caution. We will discuss the types of malicious attachments that can be found in emails later in this article.

Types of malicious email attachments

Email attachments such as ZIP and RAR archives, Microsoft Office documents, PDF files, and ISO and IMG disk images pose a significant security risk. Attackers and spammers often use these formats to distribute malware and conduct cyber attacks.

ZIP and RAR archives

ZIP and RAR archives are often used to compress data to make it easier to transfer. However, attackers often send archives that contain malware, such as Trojans or spyware. The main threat posed by these archives is that they can disguise malicious files as innocent documents or applications. A user who unzips the archive and opens a file inside can silently install malware on their device. Some archives can be password-protected, making it difficult for antivirus programs to automatically scan their contents and giving the recipient a false sense of security.

Microsoft Office documents

Microsoft Office files are popular with cybercriminals, especially Word documents (.doc, .docx), Excel spreadsheets (.xls, .xlsx, .xlsm), and presentations (.ppt, .pptx, .pps, .ppsx) and templates (.pot, .potx, .xlt, .xltx). These files may contain embedded macros — small programs that run directly within the file. Attackers use them as scripts to download malware, for example. Most often, these attachments are targeted at office workers. They are disguised as contracts, invoices, tax notices, and urgent messages from management.

PDF files

While many are already aware of the risks associated with macros in Microsoft Office documents, the dangers lurking in PDF files often go unnoticed. Malicious code can also be embedded in PDF documents because the format supports the creation and execution of JavaScript scripts.

In addition, scammers often use PDF documents to place phishing links. For example, in one spam campaign, scammers tried to convince users to go to a "protected view" page that required them to log in to their American Express account. As a result, the user's credentials ended up in the hands of the scammers.

ISO and IMG

While not as common as other types of attachments, ISO and IMG files have recently attracted more attention from cybercriminals. These files are disk images that are essentially virtual copies of CDs, DVDs, and other storage media.

Attackers used such attachments to distribute malware, such as the Agent Tesla Trojan designed to steal login credentials. The disk image contained a malicious executable that, when opened, activated and installed spyware on the victim's device. Interestingly, in some cases the criminals used two types of attachments at once — ISO and DOC — apparently to increase the reliability of the attack.

File extension masking

Even if the attachment is a file with an extension not listed above, it's important to remain cautious to avoid the risk of infection. Seemingly innocuous file types can still be used to hide malware. Sometimes attackers can change the file extension to hide the true file type.

For example: a file containing malicious code may be named "image.jpg" (with a .jpg extension), but may actually be an executable file (such as .exe). A text file may be named "document.pdf" but actually be a script that can run malware. So never let your guard down and avoid opening any files that look suspicious.

How to protect your email from malicious attachments?

As with many things in life, the best defense against malware infection is prophylaxis. If you don’t download any viruses, you won’t need to fight them later. To ensure your safety, follow these guidelines:

  • Don't open suspicious attachments. Even if you know the sender, if you unexpectedly receive an email with a random .exe or other potentially dangerous attachment, it's best not to open it. Even with seemingly more innocuous file attachments like PDFs, think twice before downloading and opening them (especially if your PDF reader is not up to date).

  • Update your email client, web browser, and operating system regularly. Software updates are important because attackers are constantly looking for vulnerabilities to exploit. Installing updates will help close these vulnerabilities and protect your system. Using outdated versions of browsers and email clients can compromise your security.

  • Use antivirus software. Antivirus programs play a key role in protecting your operating system. They can help you avoid the consequences of software vulnerabilities that would allow malware to run without your knowledge, or mitigate the damage if a virus manages to find its way onto your device.

Another potential threat source in emails, aside from attachments, are phishing links. They can take you to bogus websites where attackers will try to trick you into sharing your personal information, such as passwords or banking details. But even just clicking on such a link can in some cases download malware onto your computer, giving attackers access to your devices and information.

Phishing differs from other forms of hacking in that criminals actively exploit human emotions such as curiosity and fear, often backed up by information about the victim gathered from open sources. Phishing attacks can be carried out through email, SMS, instant messengers, and social networks. The attack usually looks like this: the victim receives a message or a letter allegedly from a trusted service, such as their bank, Internet provider, or a store where they recently made a purchase. The message threatens to block their account or cause other problems, urging them to provide or update personal information, which then falls right into the attacker’s hands.

Avoiding all links in emails is not a practical solution. So how to find out if the site is fake? Here are some signs that may point towards the website being a phishing one:

  • No SSL certificate. A Secure Sockets Layer (SSL) certificate is a standard security technology that provides an encrypted connection between a web server and a browser. It ensures the privacy of all information transmitted between these two components. URLs of websites that use SSL certificates usually begin with "https://" instead of "http://". To check if a website has an SSL certificate, you can look in your browser's address bar — there should be a lock icon next to the URL. Depending on your browser, the certificate information may be in different places. The absence of an SSL certificate on a site, especially on pages that require you to enter personal information, may indicate that the site is insecure and vulnerable to data phishing.

  • No additional pages. Phishing sites are usually single-page resources or have a limited number of pages, while legitimate sites usually have many pages. The main goal of such sites is to get the user to enter their confidential information immediately. A lack of additional pages may indicate that the site was created solely for the purpose of phishing.

  • Low-quality content or spelling mistakes. Phishing sites are often characterized by low-quality content that is riddled with spelling and grammatical errors. The design of such resources may look unprofessional, with unusual layouts, inappropriate fonts, or images that do not load properly. These flaws occur because cybercriminals usually prioritize speed and functionality over aesthetics. If you encounter low-quality content or strange design choices, it may be a sign that the site is fraudulent.

  • Lack of contact information. Legitimate websites typically offer users a variety of ways to contact them, including email addresses, phone numbers, physical addresses, and contact forms. In contrast, phishing sites often do not provide this information, making it difficult for users to verify their authenticity.

  • Request for personal information. One of the most common strategies used by phishing sites is to ask for sensitive personal information such as your name, address, or bank account. Legitimate sites, especially those belonging to well-known companies, will never ask for this information without your permission.

  • Pop-up windows demanding immediate action. Phishing sites often use pop-ups to get users to make quick decisions, such as entering personal information or clicking on links. These pop-ups may inform you that your account has been compromised, that you have won a contest, or that you need to take immediate action to avoid negative consequences. Legitimate websites rarely, if ever, use these methods.

What to do if you open a phishing email?

Luckily, just opening a phishing email is practically harmless — Nigerian princes have become a meme for a reason. What’s worse is actually following the phishing links that may be inside that email. If you think you clicked on a phishing link and ended up on a phishing site, follow these steps:

  1. Disconnect your device from the Internet. The first step after clicking on a phishing link is to disconnect your device from the Internet. This will help prevent the malware from being fully downloaded to your device and reduce the risk of infecting other devices that may be connected to the same network.

  2. Use antivirus software to scan your device. Antivirus software is a program installed on your computer or mobile device that protects you from known malware and viruses by detecting and eliminating them. It is best to have antivirus software already installed on your devices, otherwise you will need to download it, which requires an Internet connection. Before reconnecting to the network, make sure that no other devices are connected and that your router software is up to date.

  3. Monitor your online accounts for suspicious activity. Although antivirus programs can remove malware from your device, there is always a risk that an attacker could have performed some activity undetected. Regularly monitoring your accounts will help you quickly identify any anomalies or unusual transactions. The sooner you spot suspicious activity, the sooner you can take action. It is also a good idea to place a fraud alert with one of the credit reporting agencies to prevent attackers from accessing your credit and opening accounts in your name.

If you notice any suspicious activity on your accounts, you should immediately change your passwords to stronger ones. To ensure that your passwords follow best practices for password creation, we recommend using a password generator. In addition, if possible, enable multi-factor authentication for your accounts, which provides an extra layer of security by preventing logins without additional verification.

Conclusion

Can you get hacked by opening an email? Not really. Does engaging with its content, particularly through actions such as clicking on links or downloading attachments, increase that risk? Yes, absolutely. Cybercriminals are using advanced strategies to exploit vulnerabilities in various file formats and embedded hyperlinks, so caution when interacting with them is essential. By recognizing potential threats and following safe email practices, such as avoiding questionable links and ensuring that your software is regularly updated, you can significantly reduce the likelihood of becoming a victim of an email-related cyberattack.

喜歡這篇文章嗎?
19,274 19274 使用者評論
極好的!

AdGuard for Windows

Windows 版 AdGuard 不只是廣告封鎖程式,它是集成所有讓您享受最佳網路體驗的主要功能的多用途工具。其可封鎖廣告和危險網站,加速網頁載入速度,並且保護兒童的線上安全。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,274 19274 使用者評論
極好的!

AdGuard for Mac

Mac 版 AdGuard 是一款獨一無二的專為 MacOS 設計的廣告封鎖程式。除了保護使用者免受瀏覽器和應用程式裡惱人廣告的侵擾外,應用程式還能保護使用者免受追蹤、網路釣魚和詐騙。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,274 19274 使用者評論
極好的!

AdGuard for Android

Android 版的 AdGuard 是一個用於安卓裝置的完美解決方案。與其他大多數廣告封鎖器不同,AdGuard 不需要 Root 權限,提供廣泛的應用程式管理選項。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,274 19274 使用者評論
極好的!

AdGuard for iOS

用於 iPhone 和 iPad 的最佳 iOS 廣告封鎖程式。AdGuard 可以清除 Safari 中的各種廣告,保護個人隱私,並加快頁面載入速度。iOS 版 AdGuard 廣告封鎖技術確保最高質量的過濾,並讓使用者同時使用多個過濾器。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,274 19274 使用者評論
極好的!

AdGuard 內容阻擋器

AdGuard 內容阻擋器將消除在支援內容阻擋器技術之行動瀏覽器中的各種各類廣告 — 即 Samsung 網際網路和 Yandex.Browser。雖然比 AdGuard for Android 更受限制,但它是免費的,易於安裝並仍提供高廣告封鎖品質。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,274 19274 使用者評論
極好的!

AdGuard 瀏覽器擴充功能

AdGuard 是有效地封鎖於全部網頁上的所有類型廣告之最快的和最輕量的廣告封鎖擴充功能!為您使用的瀏覽器選擇 AdGuard,然後取得無廣告的、快速的和安全的瀏覽。
19,274 19274 使用者評論
極好的!

AdGuard 助理

AdGuard 桌面應用程式的配套瀏覽器擴充功能。它為瀏覽器提供了自訂的元件阻止的功能,將網站列入允許清單或傳送報告等功能。
19,274 19274 使用者評論
極好的!

AdGuard DNS

AdGuard DNS 是一種不需要安裝任何的應用程式而封鎖網際網路廣告之極簡單的方式。它易於使用,完全地免費,被輕易地於任何的裝置上設置,並向您提供封鎖廣告、計數器、惡意網站和成人內容之最少必要的功能。
19,274 19274 使用者評論
極好的!

AdGuard Home

AdGuard Home 是一款用於封鎖廣告 & 追蹤之全網路範圍的軟體。在您設置它之後,它將涵蓋所有您的家用裝置,且為那您不需要任何的用戶端軟體。由於物聯網和連網裝置的興起,能夠控制您的整個網路變得越來越重要。
19,274 19274 使用者評論
極好的!

AdGuard Pro iOS 版

除了在 Safari 中之優秀的 iOS 廣告封鎖對普通版的用戶為已知的外,AdGuard Pro 提供很多功能。透過提供對自訂的 DNS 設定之存取,該應用程式允許您封鎖廣告、保護您的孩子免於線上成人內容並保護您個人的資料免於盜竊。
透過下載該程式,您接受授權協定的條款
閱讀更多
19,274 19274 使用者評論
極好的!

AdGuard for Safari

自 Apple 開始強迫每位人使用該新的軟體開發套件(SDK)以來,用於 Safari 的廣告封鎖延伸功能處境艱難。AdGuard 延伸功能可以將高優質的廣告封鎖帶回 Safari。
19,274 19274 使用者評論
極好的!

AdGuard Temp Mail

免費的臨時電子郵件地址產生器,保持匿名性並保護個人隱私。您的主收件匣中沒有垃圾郵件!
19,274 19274 使用者評論
極好的!

AdGuard Android TV 版

Android TV 版 AdGuard 是唯一一款能封鎖廣告、保護隱私並充當智慧電視防火墻的應用程式。取得網路威脅警告,使用安全 DNS,並受益於加密流量。有了安全性和零廣告的使用體驗,使用者就可以盡情享受最喜愛的節目了!
已開始下載 AdGuard 點擊箭頭所指示的檔案開始安裝 AdGuard。 選擇"開啟"並點擊"確定",然後等待該檔案被下載。在被打開的視窗中,拖曳 AdGuard 圖像到"應用程式"檔案夾中。感謝您選擇 AdGuard! 選擇"開啟"並點擊"確定",然後等待該檔案被下載。在被打開的視窗中,點擊"安裝"。感謝您選擇 AdGuard!
在行動裝置上安裝 AdGuard