So i received a phishing email recently. However this phishing email was a bit different to other phishing emails, it seemed very targeted and based on who they were impersonating and the information they already had about me I could tell that the only way they would have gotten this information was from a previous employer of mine.
To be a bit more specific without identifying who that employer is.
The phishing email was impersonating a previous employer of mine, specifically someone from senior management and was talking to me as if i was a current employee there, the email got sent to my personal email (instead of my former work email). The only way that i can think that they got this information was from information on internal systems of that employer.
The phishing email address used was not that of my former employer, it came from a @blueyonder.co.uk (never heard of this before)
I tried reaching out to the former employer, and they seem to be aware of phishing emails being sent out impersonating their staff, but they don't want to make comment on if any of their internal systems got breached or leaked or specifically what got acquired.
I guess my big concern is if my personal information got leaked, and how much of it got leaked, is there a way of finding this out from my former employer? is there a way that i can ensure the former employer is taking appropriate action with my data? What should i do in this case?
edit:
- I've had confirmation from some other employees & ex employees that they received a similar email
these days, it's best to assume ALL your information has been leaked by everyone.