Original Phishing Message
From: jmaster[@]misd[.]net
Subject: Re: *** IT Service Report ***
Where Did the Link Lead?
The link foreversentiments[.]com/as led to a fake Outlook Web App login page. Always hover over links to see where they lead. Do not enter your credentials on websites you do not recognize or on online forms.
Tips for Detection
- Notice the sender’s email is not @pugetsound.edu and the odd subject line.
- Technology Services will not ask you to migrate email out of the blue.
- Be aware of what tools the university provides. If phishing messages mention tools no longer provided or supported, that should be a red flag.
- Notice the false sense of urgency (e.g. “You might lose your account”)
Text of Phishing Message
From: jmaster[@]misd[.]net
Subject: Re: *** IT Service Report ***
To All,
We are migrating all email accounts into the latest Microsoft Outlook 2024 and as such all active Account holders are to verify and Log in for the upgrade and migration to take effect now. This is done to improve the security and efficiency.
Click on Microsoft Outlook Portal for migration.
Note: You might lose your account if you fail to Migrate to the latest Outlook web App webmail.
Best Regards,
Master Julie
ITS Help-desk