{"id":900,"date":"2022-10-18T08:22:05","date_gmt":"2022-10-18T15:22:05","guid":{"rendered":"https:\/\/blogs.pugetsound.edu\/infosec\/?p=900"},"modified":"2022-10-18T08:22:31","modified_gmt":"2022-10-18T15:22:31","slug":"phishing-from-10-18-2022-daniel-gamel-shared-the-folder-new-proposal-from-daniel-gamel-with-you","status":"publish","type":"post","link":"https:\/\/blogs.pugetsound.edu\/infosec\/the-phish-tank\/900","title":{"rendered":"Phishing from 10\/18\/2022: “Daniel Gamel shared the folder ‘New Proposal from Daniel Gamel’ with you.”"},"content":{"rendered":"\n

Original Phishing Message<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Where Did the Link Lead?<\/p>\n\n\n\n

The link initially led to a shared document on OneDrive. The OneDrive document contained a link to a phishing site designed to steal your credentials. Notice the URL smoggy-prairie-option[.]glitch[.]me. That is not an Adobe or Microsoft site. <\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n
\"\"<\/figure>\n\n\n\n

Text of Phishing Message<\/p>\n\n\n\n

From<\/strong>: danielmgamel[@]hotmail[.]com
Subject<\/strong>: Daniel Gamel shared the folder “New Proposal from Daniel Gamel” with you.<\/p>\n\n\n\n

Daniel Gamel shared a folder with you
Daniel Gamel shared the folder “New Proposal from Daniel Gamel” with you.<\/p>\n\n\n\n

New Proposal from Daniel Gamel<\/p>\n\n\n\n

Open<\/p>\n","protected":false},"excerpt":{"rendered":"

Original Phishing Message Where Did the Link Lead? The link initially led to a shared document on OneDrive. The OneDrive document contained a link to a phishing site designed to steal your credentials. Notice the URL smoggy-prairie-option[.]glitch[.]me. That is not an Adobe or Microsoft site. Text of Phishing Message From: danielmgamel[@]hotmail[.]comSubject: Daniel Gamel shared the […]<\/p>\n","protected":false},"author":521,"featured_media":904,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[3],"class_list":["post-900","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-phish-tank","tag-phishing"],"_links":{"self":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/900","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/users\/521"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/comments?post=900"}],"version-history":[{"count":1,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/900\/revisions"}],"predecessor-version":[{"id":905,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/posts\/900\/revisions\/905"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media\/904"}],"wp:attachment":[{"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/media?parent=900"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/categories?post=900"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.pugetsound.edu\/infosec\/wp-json\/wp\/v2\/tags?post=900"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}