Original Phishing Message

Note: If you received this message, simply delete it and do not click on any links. If you clicked on the link, please contact the Service Desk at 253-879-8585 so we may assist with ensuring the security of your account.

Tips for Detection

• Cloud file sharing links are a very common technique used in phishing emails. Links in these emails are typically designed to steal your credentials or to download malware onto your computer.
• If you are not expecting a shared file from somebody you know or receive a document sharing link from somebody you do not know, always use extra caution.
• Notice the misspelling of “Isiaah” in the text of the email. It appears the sender was attempting to impersonate a campus member.
• Notice that the file extension in the linked document appears to be “.File” which is not a valid document type. An extremely generic document title like “doc.File” is suspicious.

Text of Phishing Message

From: Daniel.Garbutt[@]usrowing[.]org
Subject: Daniel Garbutt shared “doc.File” with you.

Daniel Garbutt shared a file with you.

FWD: siaah Crawford Shared a file with one drive.

doc.File

This link only works for the direct recipients of this message.