I want to inform and remind everyone of a clever scam that has been going around.
Scammers are downloading databases of emails and passwords of websites that have been hacked and published publicly on the internet. This scam is tricky because they email you the password you used on a website that has been hacked, so it seems like they legitimately know some personal information about you. But they really don't!
An example of these emails and more information can be found here:
Things you can do to help mitigate this issue:
- Use different passwords for every website you have an accounts on
- Use a password manager like https://1password.com/
- Change your passwords annually or biennial
- And as always, forward any concerning messages to email@example.com and we will investigate