Information Sheet – Claim #UT System, Case# 2024 CA
This email below has been confirmed as malicious or fraudulent by the Information Security department. If you have received this phishing email, do not open any attachments or follow the link(s) in the message; simply delete the email.The phishing email is a credential harvesting attempt that impersonates Microsoft Support Desk, alerting the user to undelivered emails due to Office365 quarantine. It prompts the user to review and restore messages by clicking a link. The email creates urgency by warning the user that the messages will be deleted in 24 hours if no action is taken. It contains a malicious word document ( Quarantine summary SO Ut system.docx ).
Red Flags:
- Impersonal greeting (“Dear User” instead of a specific name).
- Urgent language, with a threat of message deletion in 24 hours.
- Suspicious link for restoring messages.
- Email claims to be from Microsoft but contains non-standard branding.
- The sender’s email address ( hello@thegroomi.com ) is inconsistent with legitimate Microsoft communication.
