Warning Against Scam E-Mails with False Sender

Leister Insight2 Aug 2021

Cyber threats are unfortunately a topic that companies must handle frequently today. This makes it even more important for us to inform our clients and business partners, proactively about the following security occurrence.

Unknown persons have registered the domain name us-leister.com in the last few days and thus send e-mails in the name of the Leister Group with fraudulent intentions. Furthermore, e-mails with a spoofed sender address (martin.zingg@leister.com) were sent, which contained very strange-looking requests in the text (CEO Fraud¹)

For this reason, we recommend you the following measures:

Never respond with "Reply" to emails with such strange-looking content. Always make inquiries via the officially known contact details of the Leister Group.
Checking² the sender address on incoming emails.
The correct return addresses for the Leister Group are as follows:
xxxx.xxxxxx@leister.com
xxxx.xxxxxx@Leister.in
xxxx.xxxxxx@Leister.jp
xxxx.xxxxxx@Leister.it
xxxx.xxxxxx@Leister.nl
xxxx.xxxxxx@Leister.be
xxxx.xxxxxx@Leister.cn
Blocking the domain us-Leister.com on your firewalls, proxy servers and mail gateways.

We would like to apologize for any inconveniences caused and hope that this information will make a small contribution to the fight against cybercrime.

¹CEO Fraud is a fraud method in which attackers impersonate a CEO, manager or boss and ask recipients to transfer money to a spe-cific account, for example. If the attacker uses email as a means of communication, CEO fraud is a form of business email compro-mise (BEC).

²Note: It is not possible to reliably check the email address in the sender line because this display can be falsified (address spoofing). The check must be done with a mouseover (up to Office 2016) and for newer versions via "File - Properties".