During Phishmas, you can expect a large increase of phishing emails from shipping companies like UPS, DHL and FedEx. End-users receive tons of legitimate emails from these companies, making these scam emails seem more legitimate.

In this email, we see a spoof of UPS. The scammers are asking for the user to confirm their email address.

That link, however, goes to a credential harvesting page.

Notice that the sender address is not actually from UPS. This holiday season, check sender addresses before responding to anything--and be sure to check it twice to see who is naughty or nice.