manx.net email scam

We are aware of an email scam targeting manx.net customers. Like many other email spam campaigns of this type, these emails are designed to blackmail people. Cyber criminals send this type of email to thousands of people, claiming they have embarrassing material and that they have hacked an email account.

It’s very important to stress that there was NO data breach of manx.net accounts. Our systems would have notified us if a breach had occurred, and in that event we would have complied with our regulatory obligations and reported the breach to the Isle of Man Information Commissioner, the regulatory body for data protection.

The recent scam emails may contain what appears to be the user’s hacked manx.net account password – however, scammers harvest data from many sources and exploit the fact that many people use the same password for different accounts. So in this instance where scammers have claimed to have hacked a manx.net account, and have the user’s current manx.net password, that password will have been obtained from data harvested elsewhere on the internet and not because of a data breach on the manx.net platform.

As with all scam emails, we have the following recommendations for anyone receiving a suspicious email:

  • Do not click on any links in the email. These may trigger further activity, such as directing you to a website in an attempt to harvest personal details.
  • Delete the email
  • Change your password on manx.net . A strong, separate password for your email means that if cyber criminals steal the same password for one of your less important accounts, they can’t use it to access your email account.

 

It’s also worth following these general recommendations:

  • Always choose a complex password
  • Don’t use the same password for multiple sites/needs
  • Consider using a password management tool
  • Make sure your computer or mobile device is regularly updated as advised by Apple, Microsoft, etc as these updates contain important security improvements

 

There is a third party website for anyone who wants to check if their email address has been compromised at https://haveibeenpwned.com/