Phishing alert: Fake emails mimic LogMeIn receipts

We’re getting reports from both the general public and LogMeIn customers about suspicious emails that are designed to look like they are coming from LogMeIn — they have all the hallmarks of phishing attempts.  All of the reports have the same headline and text. And all are meant to look like a receipt of purchase. The email subject line is: Your LogMeIn Pro payment has been processed!” We want to make it clear that these did NOT come from LogMeIn and people should not click on or open any of the attachments in the email. As part of our commitment to security, we want to make sure our users and the public are aware of this specific email, and we wanted to share what we’ve learned, as well as provide an easy way for people to identify the tell tale signs of phishing attacks.

The email subject line is: Your LogMeIn Pro payment has been processed!
Intended behavior/action: Tries to get you to open corresponding attachment, which contains malicious file.
The email body text is:

Dear client, 

 Thank you for purchasing our yearly plan for LogMeIn Pro on 25 computers. 
 Your credit card has been successfully charged. 

 Date : 17/2/2015 
 Amount : $999 ( you saved $749.75) 

 The transaction details can be found in the attached receipt. 
 Your computers will be automatically upgraded the next time you sign in. 

 Thank you for choosing LogMeIn! 

    logmein_pro_receipt.doc (95)
As with all suspicious emails, please don’t open/download any attachments in these messages.  We’ll update this post if we learn more, but please be sure delete these messages if you receive them.  We also recommend taking a look at our primer on how to protect yourself against phishing attacks.
Attila Torok

Written by

Attila is a Security Engineer at LogMeIn

One thought on “Phishing alert: Fake emails mimic LogMeIn receipts

Comments are closed.