I received an email looking very like a Virgin Media bill including my account number. I clicked on the view bill link before realising my error. Could somebody please tell me how to report this to Virgin and what might be the possible consequences?
Consequences: Check you bank account for untoward activity. If you use on-line banking change your security credentials. Clear your computer's cache and cookies to remove any tracking cookie that may have been installed by clicking. Change your VM email and My Virginmedia password (they are the same)
I'm a Very Insightful Person, I'm here to share knowledge, I don't work for Virgin Media. Learn more
Have I helped? Click Mark as Helpful Answer or use Kudos to say thanks
All good advice from @HowardML above but there are a few further things that may have to be considered.
@captainrjm you say you clicked on the link, that would have taken you to a fake VM look-alike website, in itself that probably won't matter, but did you actually enter any details into this site? I guess it asked for your username and password - yes? If you did then the people behind the scam site now know your VM username and email address along with the associated password.
The first thing they will try is to log into your email and possibly change the password to lock you out or possibly add forwarders to send copies of any emails you receive in the future to them, they will also start trying the same combination on other sites, Twitter, Facebook Amazon etc - despite years of telling people to never use the same password on multiple site, loads still do. Armed with access to your email they'll try asking for password resets on other sites and see which ones come up trumps.
OK if you are quick, you get in first and change your VM details - that at least stops them from gaining control of your account but now you need to carefully think, have you ever used that combination of email address and password anywhere else? If you have then that account is now vulnerable although it could be weeks or months before the 'hackers' (and I'll qualify the term as they are nothing of the sort) get around to trying them - or maybe it'll be ten minutes.
You may well have a bit of job to do now - but, at least you are ahead of the game compared to most people, in that you realized what you had done and are seeking advice and taking steps to mitigate any fallout.
Thanks for the link in your post (page here) to virgin media fraud and security, have not seen this before and have read this and printed off the data including email security.
The advice is very good and wide ranging on many subjects.
I have had no virgin security alerts, checked my virgin contact email today so I think my account and equipment is secure.
The fake emails are easily identified and I use a different contact email address now (changed it a while back) so any email from virgin to my primary email are fake, I changed the contact address to be secure and use a gmail contact email/username because my primary virgin email was getting spam.
The advice not to click on anything in the email is wise and always logging into the genuine website to check accounts.
I found the advice on computer security excellent and coupled with advice from the community I do regular check on updating software and browsers.
I rely on the firewalls in the hub3 and windows 10 firewall so just make sure they are both switched on.
Still coming I received a virgin media bill notice yesterday, originating from a London server btcentralplus via france server big-stores with sender address mail.com. (your last bill remains unpaid)- the sender has the ability to change servers every time so may be using special software.
The virgin scam emails all have a red ❗ exclamation mark indicating high importance, this appears close to the date in the email.
This is uncommon and only ever seen this on the antivirus scam emails from sender "hargray" that started in 2020 and continued into 2021, now ceased.
It may be the same scammer at work as no one else uses this red exclamation mark.
However I now have my inbox whitelisted for know contacts only, so all the remaining unknown emails go to spam and a holding folder via filters.
I received an unusual survey email from Northern Powergrid but may be genuine, as I appear to be registerd with them with my virgin email but can not reset the password so will ring them, had no emails from them before, and I have a record of changing to a different email with them so odd.
My Northern Powergrid email was genuine, so sorted that one by ringing them up, always wise to check out if an email is valid if in doubt.
ICONS IN EMAILS-
The use of icons in emails is unusual such as low priority, high priority, set colour etc. Just recently (2020/2021) I have notice these coloured icons in some emails from certain sources, especially in spam/scam emails, as most people do not use icons for general emails, although emoji are often used in the subject of marketing emails. They are probably there to attract attention to the email such as a red flag, exclamation mark etc and they can be done in some mail software such as outlook.
The use of icons in emails is rare but I am now watching for them, usually it is like a trademark for a particular sender to include an icon, I have some with blue dash which indicates low priority if I hover the curser over the icon (unknown dating emails)
Some gambling/betting emails have red flag and this is a set colour icon, reason unknown.
When composing a virgin email in the options, the email can be set as normal priority, low priority or high priority, I have never used this before but tested this out today (sending emails to myself) and this provides the red exclamation mark for high priority, and the blue dash for low priority as seen is some spam emails, so I assume this is a standard option across email services.
Spammers can algorithms to change the sender address each time to avoid spam filters, changing the sender name and also the domain.