We might have accidentally or intentionally subscribed to websites, newsletters and more for temporary need, which in-turn floods our mail inboxes with promotional emails, unsolicited offers, and endless newsletters. So far, clicking “unsubscribe” in the mail seemed like a quick and easy escape to get rid of those frequent annoying mails. But, not anymore.
Experts warn that the “unsubscribe” link, what appears to be a simple click to clear your digital clutter could actually be a hidden trap to scammers, putting you at risk. Here is why, and what you should do instead without falling into the trap.
Hidden Danger of the “Unsubscribe” Link
Our mailboxes are constantly swarming with unwanted messages, from crypto tips and flash sales to annoying job offers and travel deals. For many, the “unsubscribe” button is seen as the go-to solution for removing these emails. Yet, cybersecurity experts are now cautioning that these links aren’t always what they seem, and clicking them might do more harm than good.
The problem lies in the potential for these links to be malicious. According to reports citing DNSFilter, a cybersecurity software company, approximately 1 in every 644 unsubscribe clicks leads to potentially harmful websites. When you click such a link, you’re “leaving the safety of your email app and entering the wild west of the web”.
Even if a link doesn’t immediately redirect you to a phishing site, clicking it can still confirm to scammers that your email address is active and monitored. As Michael Bargury, co-founder of security company Zenity, states, “Clicking [unsubscribe] tells attackers you’re a real person”. This confirmation can make you a bigger target in the future, potentially leading to more spam or attempts at online scams.
Read this: Connecting Gemini with Google Workspace is the best thing I did, Here is why
In more severe cases, these links have been found to redirect users to fake websites designed to steal login information or install malware. A significant red flag is if the redirected unsubscribe page asks for your password; experts warn you should never provide it. Even seemingly legitimate-looking unsubscribe pages can be problematic, as re-entering your email there just confirms to spammers that your account is “a live one”.
How to Unsubscribe Mails safely?
Since clicking on the “unsubscribe” link within an email can be dangerous, experts recommend safer alternative methods.
- Use In-App Unsubscribe Features: Most email applications, such as Gmail or Outlook, have built-in “unsubscribe” buttons or “list-unsubscribe headers“. These are generally safer because they don’t take you outside your inbox and are vetted by the email provider.
- Mark as Spam or Block: If the built-in option isn’t available or if the sender looks suspicious, it’s better to report the message as spam. You can also set up email filters to automatically block future communications from that sender.
- Avoid Untrusted Links: As Charles Henderson of Coalfire bluntly puts it, “If you don’t trust the source, why would you trust their unsubscribe link?”. It’s best to avoid clicking an unsubscribe link if you don’t trust the email’s origin.
- Protect Your Identity: For long-term inbox hygiene, consider using disposable or alias email addresses for sign-ups. Features like Apple’s “Hide My Email” and browser extensions for Chrome and Firefox can help keep your real email address private and reduce spam.
In today’s digital age, it’s often safer to stay off a scammer’s radar entirely rather than inadvertently confirming your email’s activity by clicking a risky unsubscribe link.
Join our community by subscribing to our Weekly Newsletter to stay updated on the latest AI updates and technologies, including the tips and how-to guides. (Also, follow us on Instagram (@inner_detail) for more updates in your feed).
(For more such interesting informational, technology and innovation stuffs, keep reading The Inner Detail).
