Online users who have received the "Yahoo Upgrade on our Admin System" emails like the one below, which claim they need to upgrade their accounts to protect against spammers are asked to delete them and should not follow the instructions in them. This is because the emails are phishing scams being sent by cybercriminals to trick Yahoo users into clicking on the link in them, which goes to phishing websites that steal Yahoo usernames and passwords.
The "Yahoo Upgrade on our Admin System" Phishing Scam
From: no-reply@admin1 <jacobselvaraj_2000@yahoo.com>
Sent: Wednesday, 17 October 2018 09:38:00 BST
Subject: Important update
Inline image
Dear Email User,
There have been a recent upgrade on our Admin System. This upgrade is to help protect you from spammers. Protect your account by clicking here. I f you feel you protected please ignore this message.
Thanks for your Co-operation.
Yahoo Admin 2018
Yahoo users should never click on a link to sign into their accounts; they should instead, go directly to mail.yahoo.com or yahoo.com and sign-in from there. Once they are signed in, they will be alerted to updates, changes or other important notifications. Going directly to Yahoo’s website to sign into their accounts, will protect Yahoo users from phishing links that go to fake websites that steal usernames and passwords. Phishing websites steal their visitors’ usernames and passwords by asking them to sign into their accounts on the same fake website. Once visitors to the websites attempt to sign-in, their usernames and passwords (credentials) will be sent to the cybercriminals responsible for the phishing websites. As soon as the cybercriminals receive their potential victims’ usernames and passwords, they will sign into their accounts, hijack and use them fraudulently.
Yahoo users who have been tricked by the "Upgrade to Yahoo Mail 9.1" email scam, are asked to change their Yahoo passwords immediately before their accounts are hijacked and used fraudulently.