A new Walmart-themed phishing campaign has been identified by threat researchers. The scam attempts to steal personal information and verifies email addresses to be used in further attacks. The phishing email pretends to be from Walmart and contains the subject line “Your Package delivery Problem Notification lD#” and asks users to confirm their shipping address to ensure delivery. The email contains an “update my address” link which if clicked, prompts users to send their mailing address to the threat actor. The stolen information is then used to conduct identity theft attacks, gain access to the victim’s other accounts, or perform targeted spear-phishing attacks.