{"id":1017,"date":"2023-02-21T13:20:02","date_gmt":"2023-02-21T21:20:02","guid":{"rendered":"https:\/\/blogs.pugetsound.edu\/infosec\/?p=1017"},"modified":"2023-06-07T14:49:40","modified_gmt":"2023-06-07T21:49:40","slug":"phishing-from-02-18-2023-from-pugetsound-edu-administrator-no-replypugetsound-edu-subject-confirm-your-email-usernamepugetsound-edu-subject-deactivation-usernamepugetsound-edu","status":"publish","type":"post","link":"https:\/\/blogs.pugetsound.edu\/infosec\/the-phish-tank\/1017","title":{"rendered":"Phishing from 02\/18\/2023: &#8220;From: pugetsound.edu Administrator no-reply@pugetsound.edu Subject: confirm your email :  username@pugetsound.edu  subject= Deactivation  username@pugetsound.edu&#8221;"},"content":{"rendered":"\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"677\" height=\"566\" src=\"https:\/\/blogs.pugetsound.edu\/infosec\/files\/2023\/02\/2-18-23-confirm-your-email-phish.jpg\" alt=\"\" class=\"wp-image-1018\" srcset=\"https:\/\/blogs.pugetsound.edu\/infosec\/files\/2023\/02\/2-18-23-confirm-your-email-phish.jpg 677w, https:\/\/blogs.pugetsound.edu\/infosec\/files\/2023\/02\/2-18-23-confirm-your-email-phish-300x251.jpg 300w\" sizes=\"auto, (max-width: 677px) 100vw, 677px\" \/><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\">Tips for Detection<\/h2>\n\n\n\n<ul class=\"wp-block-list\"><li>Note the sense of urgency (e.g. 6 hours, final deadline).<\/li><li>Hovering over the link does not take you to a University of Puget Sound website. Always use caution before clicking on links in emails.<\/li><li>Technology Services will not ask you to click a link to keep your account. Account deactivations will only occur in line with the <a href=\"https:\/\/www.pugetsound.edu\/technology-services\/technology-related-policies\/accounts-policy\">Accounts Policy<\/a>.<\/li><li>Notice the odd subject line. <\/li><\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Text of Phishing Message<\/h2>\n\n\n\n<p>From:&nbsp;pugetsound.edu&nbsp;Administrator &lt;no-reply@pugetsound.edu&gt;<br>Subject: confirm your email :&nbsp;&nbsp;username@pugetsound.edu&nbsp;&nbsp;subject= Deactivation&nbsp;&nbsp;username@pugetsound.edu&nbsp;<\/p>\n\n\n\n<p>Server Administrator | IT Support pugetsound.edu   <\/p>\n\n\n\n<p>Hello &nbsp;username@pugetsound.edu&nbsp; We are closing all old versions and non-active users from 2\/18\/2023 8:04:51 a.m.. <\/p>\n\n\n\n<p>Please confirm your email address &nbsp;username@pugetsound.edu&nbsp; to keep your account from being deactivated. <\/p>\n\n\n\n<p>Confirm Your Email Here Account will be automatically deleted after 2\/18\/2023 8:04:51 a.m. <\/p>\n\n\n\n<p>You can change the frequency of these notifications within your mailbox portal.<\/p>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Tips for Detection Note the sense of urgency (e.g. 6 hours, final deadline). Hovering over the link does not take you to a University of Puget Sound website. Always use caution before clicking on links in emails. Technology Services will not ask you to click a link to keep your account. Account deactivations will only [&hellip;]<\/p>\n","protected":false},"author":643,"featured_media":1018,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[3,4],"class_list":["post-1017","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-phish-tank","tag-phishing","tag-phishtank"],"_links":{"self":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/1017","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/users\/643"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/comments?post=1017"}],"version-history":[{"count":2,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/1017\/revisions"}],"predecessor-version":[{"id":1022,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/1017\/revisions\/1022"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media\/1018"}],"wp:attachment":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media?parent=1017"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/categories?post=1017"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/tags?post=1017"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}