This is a phishing message taking advantage of so many people working remotely and using teleconferencing products. Zoom is extremely popular right now, with Microsoft Teams gaining in popularity. Expect future phishing attacks to spoof Teams and WebEx, as well as products used by our collaborators, such as GoToMeeting and Adobe Connect.
Read moreThis phishing message includes the recipient’s username in the subject line, replaced here by “#####”. The attachment (HTML file) opens in the recipient’s default web browser, appearing to be an Outlook Web App login page (see following sample e-mail). The fake OWA page captures and encrypts the login username and password and sends it to […]
Read moreThis phish has a spoofed SharePoint no-reply “From:” address, but the message came from Macao.
Read moreThis phishing attack pretends to be from the Johns Hopkins Center. Attached to this email is a malicious Excel file titled ‘covid_usa_nyt_8072.xls’ that displays the number of Coronavirus-related deaths in the United States. If the user opens the Excel attachment and clicks ‘Enable Content’, malicious macros install the NetSupport Manager client from a remote […]
Read moreThe message below takes advantage of the COVID-19 pandemic crisis and a re-purposed message in an effort to steal login credentials. Remember, no one at the University will ever legitimately ask for your password.
Read moreSmishing is short for SMS phishing. It works just like a phishing email but uses text messages to get victims to visit a link or send personal or confidential data to the sender. You should delete any unsolicited text messages; they are almost always attempts to gain personal or confidential data from you. To verify […]
Read more