Urgent Outlook calendar invitations with attachments
This email below has been confirmed as malicious or fraudulent by the Information Security department. If you have received this phishing email, do not open any attachments or follow the link(s) in the message; simply delete the email.A UT institution is receiving multiple externally initiated Outlook calendar invitations that appear to be coming from actual employees.
The invitations are titled “Urgent (institution) meeting” or “(Institution) Action required: Kindly Update Promptly – Employee ID.”
These invites contain attachments with malicious QR codes. Some of the attachments are branded with the institution logo.
If you get an urgent Outlook Meeting Request with an attachment from someone at our university, always confirm its authenticity by calling, messaging, or emailing that person directly. Never scan unfamiliar QR codes.
We do not currently have a sample of the Outlook Meeting request.