{"id":673,"date":"2022-03-07T08:39:21","date_gmt":"2022-03-07T16:39:21","guid":{"rendered":"https:\/\/blogs.pugetsound.edu\/infosec\/?p=673"},"modified":"2022-03-07T08:39:23","modified_gmt":"2022-03-07T16:39:23","slug":"phishing-from-3-7-2022-2022-benefit-support-team","status":"publish","type":"post","link":"https:\/\/blogs.pugetsound.edu\/infosec\/the-phish-tank\/673","title":{"rendered":"Phishing from 3\/7\/2022: “2022 Benefit Support Team”"},"content":{"rendered":"\n

Original Phishing Message<\/p>\n\n\n\n

NOTE: This message is NOT legitimate. Please delete it.<\/em><\/strong><\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Where Did the Link Lead?<\/p>\n\n\n\n

The link led to an online form asking for your credentials. Never enter credentials on sites you do not recognize or on online forms.<\/p>\n\n\n\n

Note:<\/em><\/strong> If you entered credentials on this page, please call the Service Desk at 253-879-8585 (option 2) immediately as your password is compromised. In addition to changing your Puget Sound password, there are other steps to ensure your account is secure. <\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Text of Phishing Message<\/p>\n\n\n\n

From:<\/strong> laura.beck[@]stud[.]pmu[.]ac[.]at
Subject: <\/strong>2022 Benefit Support Team<\/p>\n\n\n\n

In response to the current hardship in the community due to the COVID-19 pandemic, the Employee Assistance Program has decided to support students and employees.<\/p>\n\n\n\n

The Employee Assistance Program will pay $3,780.00 to all eligible students and employees, as COVID-19 support, starting from, Monday, March 07, 2022.<\/p>\n\n\n\n

Visit the Covid-19 Benefits Portal and login with your school email to submit your application.<\/p>\n\n\n\n

Note: This Benefits Program is available to all students and employees.<\/p>\n\n\n\n

Sincerely,<\/p>\n\n\n\n

COVID-19 Support Team<\/p>\n\n\n\n

Employee Assistance Program.<\/p>\n","protected":false},"excerpt":{"rendered":"

Original Phishing Message NOTE: This message is NOT legitimate. Please delete it. Where Did the Link Lead? The link led to an online form asking for your credentials. Never enter credentials on sites you do not recognize or on online forms. Note: If you entered credentials on this page, please call the Service Desk at […]<\/p>\n","protected":false},"author":521,"featured_media":674,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[3],"class_list":["post-673","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-phish-tank","tag-phishing"],"_links":{"self":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/673","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/users\/521"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/comments?post=673"}],"version-history":[{"count":1,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/673\/revisions"}],"predecessor-version":[{"id":676,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/673\/revisions\/676"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media\/674"}],"wp:attachment":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media?parent=673"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/categories?post=673"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/tags?post=673"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}