{"id":47,"date":"2020-09-16T19:05:52","date_gmt":"2020-09-16T19:05:52","guid":{"rendered":"http:\/\/blogs.pugetsound.edu\/infosec\/?p=47"},"modified":"2020-09-23T12:49:31","modified_gmt":"2020-09-23T19:49:31","slug":"phishing-example-from-5-19-20-mail-serv-shared-a-file-with-you","status":"publish","type":"post","link":"https:\/\/blogs.pugetsound.edu\/infosec\/the-phish-tank\/47","title":{"rendered":"Phishing Example from 5\/19\/20: “Mail Serv. shared a file with you”"},"content":{"rendered":"

Security Tip: If you are not expecting a shared document from Google Drive or Dropbox or Office 365 from outside the organization, use caution<\/strong>. If you are sharing a document using cloud services, also notify the recipient by another means of communication.<\/p><\/blockquote>\n

Tips for Detection:<\/h3>\n
    \n
  • Sending address is @hotmail.com<\/li>\n
  • Many phishing emails attempt to impersonate the provost or academic department chairs<\/li>\n
  • The link does in fact lead to a legitimate document stored on Office 365, but the document asks the user to click another link to a malicious site (not shown)<\/li>\n<\/ul>\n

    Original Phishing Message:<\/h3>\n

    \"\"<\/p>\n

    Text of Phishing Message:<\/h3>\n

    Mail Serv. shared a file with you<\/p>\n

    Kindly check the new school transcript. Laura L. Behling Provost University of Puget Sound<\/p>\n

    Open [link removed]<\/p>\n","protected":false},"excerpt":{"rendered":"

    Security Tip: If you are not expecting a shared document from Google Drive or Dropbox or Office 365 from outside the organization, use caution. If you are sharing a document using cloud services, also notify the recipient by another means of communication. Tips for Detection: Sending address is @hotmail.com Many phishing emails attempt to impersonate […]<\/p>\n","protected":false},"author":521,"featured_media":19,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[3,4],"class_list":["post-47","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-phish-tank","tag-phishing","tag-phishtank"],"_links":{"self":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/47","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/users\/521"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/comments?post=47"}],"version-history":[{"count":1,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/47\/revisions"}],"predecessor-version":[{"id":48,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/47\/revisions\/48"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media\/19"}],"wp:attachment":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media?parent=47"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/categories?post=47"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/tags?post=47"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}