![\"\"](\"https:\/\/blogs.pugetsound.edu\/infosec\/files\/2021\/10\/10-27-21-password-phish-1024x421.png\")
<\/figure>\n\n\n\nTips for Detection<\/p>\n\n\n\n
- Notice the caution banner added to the message. <\/li>
- “Puget Sound” is spelled “pugetsound” throughout the message.<\/li>
- Technology Services will never ask you to click a link to keep your password<\/li>
- The links in the email lead to a Google Cloud Storage link which would not be where you manage your Puget Sound password. Beware of cloud file sharing links in emails you are not expecting as they may download malware onto your device.<\/li><\/ul>\n\n\n\n
Text of Phishing Message<\/p>\n\n\n\n
From: <\/strong>pugetsound Password Notification <username<\/em>@pugetsound.edu>
Subject: <\/strong>REMINDER: YOUR pugetsound Email and O365 Password will expired in 5 days<\/p>\n\n\n\nREMINDER: YOUR pugetsound Email and O365 Password will expired in 5 days. | View this email in your browser.<\/p>\n\n\n\n
Password Update Notice.
User ID: [username<\/em>]@pugetsound.edu<\/p>\n\n\n\nHello,<\/p>\n\n\n\n
Our records indicate that your password for pugetsound account has expired and you have not yet enrolled in \u201cPassword Help.\u201d Please take a moment to enroll now, and you can then reset a forgotten or expired PC \/ E-mail password at any time.<\/p>\n\n\n\n
KEEP PASSWORD<\/p>\n\n\n\n
You can only update your password via this link for 12 hours after receiving this email.<\/p>\n\n\n\n
PASSWORDHELP[@]pugetsound.edu.<\/p>\n\n\n\n
This is a mandatory service communication. To set your contact preferences for other communications, visit the pugetsound email communications manager.<\/p>\n\n\n\n
This message was sent from an unmonitored e-mail address. Please do not reply to this message.
Privacy | Legal<\/p>\n","protected":false},"excerpt":{"rendered":"Original Phishing Message Note: If you received this message, please delete it and do NOT click on any links. Tips for Detection Notice the caution banner added to the message. “Puget Sound” is spelled “pugetsound” throughout the message. Technology Services will never ask you to click a link to keep your password The links in […]<\/p>\n","protected":false},"author":521,"featured_media":478,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[3],"class_list":["post-477","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-phish-tank","tag-phishing"],"_links":{"self":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/477","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/users\/521"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/comments?post=477"}],"version-history":[{"count":2,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/477\/revisions"}],"predecessor-version":[{"id":480,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/477\/revisions\/480"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media\/478"}],"wp:attachment":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media?parent=477"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/categories?post=477"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/tags?post=477"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}