Original Phishing Message

Tips for Detection

• This sender is an individual from outside the university — note the sending address.
• Legitimate notices about password expiration will begin 14 days prior to the impending password expiration.
• You will never be asked to click on a link to keep your password.
• The entire message is an image. This is a common method used by scammers to avoid detection by email spam filters. Hovering over the image shows that it hyperlinks to 737928737928.737928[.]ian[.]co[.]za. This is not a Puget Sound website and is suspicious.
• Remember – do not enter your username/password on websites you do not recognize.

Text of Phishing Message

From: Technical Dept-IT <john[@]sfmtraining[.]co[.]uk>
Subject: Important Service Request-Reminder from Pugetsound

Microsoft

Microsoft account

Password Expiration Notice

Dear User:

Your password is set to expire today

Tuesday, 14 November 2022

We encourage you to re-confirm with same password to avoid login interruption.

Keep My Password

Note: Microsoft will not be held responsible for any account loss

Thank you,

Copyright Microsoft Corporation 2022. All Rights Reserved