Phishing: Unrecognized device signed in to your Stripe account

We don't recognize the device that was just used to sign in to your Stripe account. If this was you, you don't need to do anything. If you don't recognize it, please let us know.

Attcking email

Complete Email

From: Stripe <Do_Not_Reply@uhigherdev.com>
Sender: Do_Not_Reply@uhigherdev.com
Subject: Unrecognized device signed in to your Stripe account

Email Body

We don't recognize the device that was just used to sign in to your Stripe account. If this was you, you don't need to do anything. If you don't recognize it, please let us know.

Platform: icon Edge browser on Windows device
Device location: Salina, Kansas, United States (98.186.189.108)
Time: Nov 05, 2024 at 12:50:33 PM CDT

I don't recognize this device

If you have any questions or need any help, please reach out to Stripe support and let us know.

Stripe, 354 Oyster Point Blvd, South San Francisco, CA 94080

Need to refer to this message? Use this ID: em_ikeihzdeoajksaue7f5wtaqqhmwhja


Red Flags

This email is suspicious and likely a phishing attempt due to the following red flags:


1. Suspicious Sender Domain

  • Sender Address: The email address is Do_Not_Reply@uhigherdev.com, which is not a legitimate Stripe domain. Official Stripe notifications would come from a @stripe.com or a closely associated domain (like @email.stripe.com), not from uhigherdev.com.

2. Urgent Language and Unrecognized Device Alert

  • Unrecognized Device Message: Phishing emails often try to create a sense of urgency to make recipients act quickly. This message mentions an unfamiliar location and device to prompt immediate action.
  • Location and IP Address: Although it includes location information (Salina, Kansas) and an IP address, this does not verify the email's legitimacy. Phishers often use random or spoofed IP addresses and locations to make emails seem real.

3. Generic "I don't recognize this device" Link

  • "I don't recognize this device" Link: This phrase is often a hyperlink in phishing emails that directs the recipient to a fake login page to steal credentials. Stripe would typically prompt users to secure their accounts directly on their platform, not through suspicious links.

4. Unofficial Domain and Lack of Verification Details

  • Domain: The uhigherdev.com domain has no association with Stripe and is likely used to disguise the phishing email.
  • Lack of Direct Contact Options: The email encourages users to "reach out to Stripe support," but it doesn’t include official Stripe contact information or secure options. Legitimate companies would provide verified contact methods, such as a link to their support page.

Recommendations:

  1. Do Not Click Links or Reply: Avoid interacting with any links or buttons, as they may lead to a phishing website designed to capture login credentials or sensitive information.
  2. Contact Stripe Directly: If you’re concerned about account security, log in to your Stripe account by manually typing stripe.com into your browser and checking for any security alerts.
  3. Report and Delete the Email: Mark this email as phishing in your email client to help protect others, and delete it afterward.

Conclusion:

This email is likely a phishing attempt. The use of a non-Stripe domain, attempt to alarm the recipient with a security notice, and absence of verified contact information all suggest it is designed to steal sensitive account information.