{"id":493,"date":"2021-11-02T12:28:08","date_gmt":"2021-11-02T19:28:08","guid":{"rendered":"https:\/\/blogs.pugetsound.edu\/infosec\/?p=493"},"modified":"2021-11-02T12:28:10","modified_gmt":"2021-11-02T19:28:10","slug":"phishing-from-11-1-2021-update","status":"publish","type":"post","link":"https:\/\/blogs.pugetsound.edu\/infosec\/the-phish-tank\/493","title":{"rendered":"Phishing from 11\/1\/2021: “UPDATE”"},"content":{"rendered":"\n

Original Phishing Message<\/h2>\n\n\n\n

NOTE: If you received this message, please delete it as it is NOT legitimate. Do not click on the link.<\/em><\/strong><\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Where Did the Link Lead?<\/h2>\n\n\n\n
\"\"<\/figure>\n\n\n\n

The link takes you to an online form masquerading as a Microsoft login page that asks you to submit your email and password. Never submit sensitive information in an online form. <\/p>\n\n\n\n

Tips for Detection<\/h2>\n\n\n\n
  • Legitimate emails from Technology Services will come from an @pugetsound.edu address.<\/li>
  • Technology Services will NEVER<\/span> <\/em>ask for your login information<\/span>.<\/li>
  • The URL for the login page is not a Microsoft or Puget Sound page.<\/li>
  • Emails with a sense of urgency threatening to cut off services or benefits are extremely common in phishing scams.<\/li><\/ul>\n\n\n\n

    Text of Phishing Message<\/h2>\n\n\n\n

    From<\/strong>: a[.]ormoshev[@]mlsp[.]kg
    Reply-To: <\/strong>despi[_]greenzone[@]outlook[.]com
    Subject: <\/strong>UPDATE

    Hello<\/p>\n\n\n\n

    Your Email account will be Deactivated shortly.
    To stop Deactivation, CLICK HERE and log in

    Thanks

    IT Service Desk<\/p>\n\n\n\n

    <\/p>\n","protected":false},"excerpt":{"rendered":"

    Original Phishing Message NOTE: If you received this message, please delete it as it is NOT legitimate. Do not click on the link. Where Did the Link Lead? The link takes you to an online form masquerading as a Microsoft login page that asks you to submit your email and password. Never submit sensitive information […]<\/p>\n","protected":false},"author":635,"featured_media":494,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"class_list":["post-493","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-phish-tank"],"_links":{"self":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/493","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/users\/635"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/comments?post=493"}],"version-history":[{"count":1,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/493\/revisions"}],"predecessor-version":[{"id":496,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/493\/revisions\/496"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media\/494"}],"wp:attachment":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media?parent=493"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/categories?post=493"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/tags?post=493"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}