System Notifications | Uthscsa
This email below has been confirmed as malicious or fraudulent by the Information Security department. If you have received this phishing email, do not open any attachments or follow the link(s) in the message; simply delete the email.This is an example of a more targeted attack, in which the attackers attempted to imitate an official Uthscsa notification targeted at a specific user. Below are the red flags to identify this phishing attempt:
- Suspicious Sender Address: The sender’s email address doesn’t match the official domain of the organization it’s supposedly sent from; it’s from a foreign domain (.jp) rather than the organization’s domain.
- No Subject: There is no subject in the email, which is not typical for official communication, especially for something as critical as a password expiration notice.
- Urgency and Fear Tactics: The email claims the user’s password will expire in 24 hours, creating a sense of urgency to prompt immediate action, a common tactic in phishing attempts.
- Mismatch URL: The URL redirects to an external non Microsoft domain.
Note: The information of the targeted user has been redacted.
