{"id":1399,"date":"2026-01-05T16:39:39","date_gmt":"2026-01-06T00:39:39","guid":{"rendered":"https:\/\/blogs.pugetsound.edu\/infosec\/?p=1399"},"modified":"2026-01-05T16:39:39","modified_gmt":"2026-01-06T00:39:39","slug":"phishing-from-1-5-2026-your-2026-semester-performance-review-is-now-available","status":"publish","type":"post","link":"https:\/\/blogs.pugetsound.edu\/infosec\/the-phish-tank\/1399","title":{"rendered":"Phishing from 1\/5\/2026: &#8220;Your 2026 Semester Performance Review is Now Available&#8221;"},"content":{"rendered":"\n<p class=\"has-large-font-size\">Original Phishing Message<\/p>\n\n\n\n<p><strong>From:<\/strong> daniela.stabile[@]concordia[.]ab[.]ca<br><strong>Subject: <\/strong>Your 2026 Semester Performance Review is Now Available<br><\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"371\" src=\"https:\/\/blogs.pugetsound.edu\/infosec\/files\/2026\/01\/1-5-26-performance-review-phish-1024x371.png\" alt=\"\" class=\"wp-image-1400\" srcset=\"https:\/\/blogs.pugetsound.edu\/infosec\/files\/2026\/01\/1-5-26-performance-review-phish-1024x371.png 1024w, https:\/\/blogs.pugetsound.edu\/infosec\/files\/2026\/01\/1-5-26-performance-review-phish-300x109.png 300w, https:\/\/blogs.pugetsound.edu\/infosec\/files\/2026\/01\/1-5-26-performance-review-phish-768x278.png 768w, https:\/\/blogs.pugetsound.edu\/infosec\/files\/2026\/01\/1-5-26-performance-review-phish-1536x557.png 1536w, https:\/\/blogs.pugetsound.edu\/infosec\/files\/2026\/01\/1-5-26-performance-review-phish-1440x522.png 1440w, https:\/\/blogs.pugetsound.edu\/infosec\/files\/2026\/01\/1-5-26-performance-review-phish.png 1920w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"has-large-font-size\">Tips for Detection<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>The sender&#8217;s email address is not from the pugetsound.edu domain. Legitimate emails from Human Resources will generally come from an @pugetsound.edu email address. Further, performance reviews would typically come directly from your supervisor which would be a named individual. <\/li>\n\n\n\n<li>Phishing emails use hyperlinked text to hide the actual destination URL. Always hover over links to reveal the website and never enter your credentials on websites you do not recognize. When in doubt, go to the known website of the organization instead of clicking a link in an email. <\/li>\n\n\n\n<li>Notice the generic salutation using the &#8220;[Colleague&#8217;s Name]&#8221; placeholder. <\/li>\n<\/ul>\n\n\n\n<p class=\"has-large-font-size\">Text of Phishing Message<\/p>\n\n\n\n<p><strong>From:<\/strong> daniela.stabile[@]concordia[.]ab[.]ca<br><strong>Subject: <\/strong>Your 2026 Semester Performance Review is Now Available<\/p>\n\n\n\n<p>Dear [Colleague\u2019s Name],<\/p>\n\n\n\n<p>I hope this message finds you well and that you\u2019re enjoying a refreshing start to the new year.<\/p>\n\n\n\n<p>I\u2019m reaching out to let you know that your performance review for the 2026 semester, covering your accomplishments from 2025, is now ready to view in the faculty and staff portal. It includes a summary of your recent contributions, key strengths, areas for growth, and how your efforts align with our institutional goals.<\/p>\n\n\n\n<p>You\u2019re also encouraged to add any comments, feedback, or suggestions you\u2019d like to share for the coming semesters.<\/p>\n\n\n\n<p>To access it, simply log in using your usual credentials here:<\/p>\n\n\n\n<p>VIEW REPORT<\/p>\n\n\n\n<p>Please take a moment to review it when convenient. Most importantly, thank you for your continued dedication and hard work\u2014it makes a real impact on our students and community.<\/p>\n\n\n\n<p>Wishing you a productive and rewarding year ahead!<\/p>\n\n\n\n<p>Best regards,<\/p>\n\n\n\n<p>Human Resources Department<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Original Phishing Message From: daniela.stabile[@]concordia[.]ab[.]caSubject: Your 2026 Semester Performance Review is Now Available Tips for Detection Text of Phishing Message From: daniela.stabile[@]concordia[.]ab[.]caSubject: Your 2026 Semester Performance Review is Now Available Dear [Colleague\u2019s Name], I hope this message finds you well and that you\u2019re enjoying a refreshing start to the new year. I\u2019m reaching out to [&hellip;]<\/p>\n","protected":false},"author":521,"featured_media":1400,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[3],"class_list":["post-1399","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-phish-tank","tag-phishing"],"_links":{"self":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/1399","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/users\/521"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/comments?post=1399"}],"version-history":[{"count":1,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/1399\/revisions"}],"predecessor-version":[{"id":1401,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/1399\/revisions\/1401"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media\/1400"}],"wp:attachment":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media?parent=1399"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/categories?post=1399"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/tags?post=1399"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}