If you were redirected here after entering your credentials, please read on to learn why the email you received was phishing. Don’t worry! This was a simulated phishing attempt so your credentials are safe. However, if the situation were real, the information you entered would now be in the hands of a cybercriminal.

The email you received was sent by Technology Services to simulate a real phishing email as part of National Cyber Security Awareness Month. Visit pugetsound.edu/NCSAM2020 for more information. The goal of simulated phishing is to provide an interactive way for campus members to learn how to quickly recognize and handle phishing emails.

How could I have detected the email was phishing?

  • The display name in this email was particularly tricky as it contained an email address that seemed legitimate (support[@]microsoft[.]com). However, the real sending email address was support[@]micrososoft[.]corp. Attackers may try to use domain names similar to the real one but with several added characters or typos (e.g. Micrososoft).
  • With Puget Sound Webmail, there is no ability to release quarantined messages. Therefore, this message does not apply. If you think you are not receiving certain emails, you can contact the Service Desk at x8585.
  • The link in the email is deceiving. Though the hyperlink spells out the correct login page (webmail.pugetsound.edu), hovering over the link shows that you will be taken to pugetsoundhelpdesk.com instead. Always hover over hyperlinked text to see where it leads, even if the text is URL.
  • The email is signed by “Office 365 Admin” which shoud be suspicious as our main email system is not currently Office 365.
  • The presence of a company logo does not make the email legitimate.

Original Simulated Phishing Email

Where did the link lead?

The link led to a fake Microsoft sign-in page. This should be suspicious as it does not look like the Webmail login page at all.

Text of Simulated Phishing Email

Hello,

Your e-mail system has rejected 14 incoming messages. The e-mails are quarantined and will be available for the next 12 hours. To release the e-mails to your inbox, sign in using the following link: webmail.pugetsound.edu.

If you choose to disregard this message, the 14 messages will not be retrievable.

Thank you,

Office 365 Admin