Buyer: “hi there … can you assist me for a moment before I order?”
Me: “Sure. How can I help you?”
Buyer: “I have made a list of requirements for you to have a look. Please shed some light over budget and time required to do this.” Such a generic message that can fit any kind of service a seller offers. In the attachment, of course, is a doc file with a random name that consists of a script that changes your password immediately when you open it. DO NOT OPEN IT.
Me: “Can you please send your instructions through here as plain text? There is a lot of phishing activity on Fiverr via doc files and we need to be cautious, especially considering the fact that you signed up on Fiverr only this month and are not an old buyer. Otherwise we will not be able to help you.”
This happened a few minutes ago. Buyer is from India and signed up on Fiverr only this month and probably sent the same message to dozens of other sellers.
When you receive a suspicious message like this do NOT open the doc file, and check the buyer’s profile. If they signed up on Fiverr recently it is 90% a phisher. Report immediately.