Microsoft issued a warning about a large-scale ongoing phishing attack utilizing Constant Contact to send emails imperonating an *@usaid.gov address. The emails claimed to be an alert from USAID regarding election fraud. The link in the email is obfuscated but would eventually lead to the download of a malicious ISO hidden within an HTML attachment. Opening this attachment leads to your computer being compromised and attackers gaining persistent access to potentially control your device and gain access to other computers on the network.

More information containing an example screenshot: https://www.zdnet.com/article/microsoft-warns-of-current-nobelium-phishing-campaign-impersonating-usaid/

Detailed information: https://www.microsoft.com/security/blog/2021/05/27/new-sophisticated-email-based-attack-from-nobelium/

If you receive an email similar to this, please report it to Technology Services by forwarding the message as an attachment to servicedesk@pugetsound.edu or ts_infosec@pugetsound.edu. Do not click on any links.