Posts written by soukupg

Beware of Phishing Links Disguised as Dropbox Files

September 24, 2024

    Beware of Phishing Links Disguised as Dropbox Files Phishing attacks are evolving, and the latest trend that’s catching people off guard is the use of trusted cloud services like Dropbox to deliver malicious content. Why? Because we all know Dropbox. It’s convenient, reliable, and most importantly, it feels safe. But that’s exactly why […]


Information Sheet – Claim #UT System, Case# 2024 CA

September 24, 2024

The phishing email is a credential harvesting attempt that impersonates Microsoft Support Desk, alerting the user to undelivered emails due to Office365 quarantine. It prompts the user to review and restore messages by clicking a link. The email creates urgency by warning the user that the messages will be deleted in 24 hours if no […]


You received a 3gVoip Message

September 12, 2024

The email is designed to appear as an urgent notification from Microsoft, alerting the recipient about a voice message supposedly left by a contact. The message prompts the recipient to click a link to “Play/Listen” to the message, which is actually a malicious link. Red Flags: Non-Microsoft Domain: The sender’s email address does not belong […]


Undelivered Messages

August 29, 2024

This phishing email pretends to be a notification about undelivered Microsoft 365 messages. It uses social engineering tactics to entice the recipient to click on a malicious “Review” button by claiming there are three undelivered messages awaiting attention. The email attempts to impersonate Microsoft, making it appear as a legitimate communication. Red Flags: Suspicious External […]


Voice Message

August 29, 2024

This phishing email presents itself as a voice message notification from a VoIP service, attempting to lure the recipient into clicking on a malicious link by claiming they have a missed call record. The email uses deceptive tactics, including a seemingly legitimate “Play” button that directs to a malicious link and an attempt to impersonate […]


BOI Reporting Notice

August 12, 2024

This scam is presented as an official notice from the fabricated “U.S. Business Compliance Commission,” which targets businesses with the threat of penalties for non-compliance with fictional regulations. The document leverages urgent language and threats of significant fines to manipulate recipients into submitting their Social Security Numbers and making payments through a provided link, which […]


RE-ENROLL AUTHENTICATOR DUE TO MICROSOFT SHUTDOWN

July 23, 2024

This email impersonates a UTHSCSA employee, prompting users to update their credentials. The link redirects to a malicious site, and the provided IT support phone number differs from the official IMS support desk. Please report this email and avoid clicking any links.


🛡️ Alert From Google

June 25, 2024

This phishing email uses several tactics to deceive recipients into clicking on a malicious link. The email impersonates Google with suspicious branding and contains an external email address that doesn’t match legitimate Google domains. The content of the email creates a sense of urgency by warning about a detected virus, prompting users to click a […]


6550-Uthscsa: Accept the proposal and return

June 5, 2024

This phishing email targeting UTHSCSA employees leverages several tactics to deceive recipients and avoid detection. Here are the key elements and red flags: Suspicious Branding and Font: The DocuSign logo appears distorted and irregular, which is a common indicator of a phishing attempt. Authentic emails from companies typically maintain consistent and professional branding. Sender Address […]


Informational-severity alert:Creation of forwarding/redirect rule Case ID:IPx2rFL

May 15, 2024

This phishing email employs a fake security alert from Microsoft 365 to exploit the recipient’s trust and urgency, warning of a newly created forwarding rule to prompt immediate action. It uses a seemingly official Microsoft domain and format to appear legitimate, while embedding a malicious link designed to harvest credentials or install malware. The email’s […]