Original Phishing Message
Note: If you received this message, you can simply delete it. It is not from Technology Services. Do not click any links or open attachments. If you are unsure whether you need to change your password, you may contact the Service Desk.
Tips for Detection
- Always double check the sender’s email address. The display name in this example is in the format of an email address which makes it trickier. However, the actual sender’s email address comes from the domain @cox.net, not @pugetsound.edu.
- If an email contains some kind of threat to discontinue services and has a sense of urgency, use extra caution. Those are common methods used in phishing emails designed to provoke a response from you.
- At Puget Sound, any notification about password expiration will begin 14 days prior. There also would not be a link to keep the same password.
Text of Phishing Message
From: jodivalentpasswordnowvarilityvalidating[@]cox[.]net
Subject: Expiring on Wednesday, January 27, 2021
Your password for [username]@pugetsound.edu is due to expire today Wednesday, January 27, 2021
Click below to keep password active
Failure to comply will halt future activities