Welcome to the Phish Pond. On this page we'll post screenshots of recently encountered real world phishing attacks. If you need help identifying phishing, sign-up for one of our training sessions, or watch our online training session here. As always, if you find one, report it to: PhishMeNot@holycross.edu |
ITS Information Security - Phish Pond
COVID-19 Information - April 14th, 2020
A popular phishing technique is selecting a current event or of annual event to send out fake announcements, alerts, or appointments for. Taxes, elections, and even the current pandemic as seen here, look legitimate as it's a topic being actively discussed on media etc.... As always double checking the sending address and any URL's contained in the message before trusting it. |
Direct Deposit Phish - January 27th 2020
This phish can have costly consequences. The hope is the HR person this was sent to will reply and request the information for the direct deposit account (of course the attacker's account). This is a great reminder to take a good look at the sending address of the message (it was NOT the employee's Holy Cross email) and follow up not using any information or reply from the message. |
Important File Attachment Phish - September 16th 2019
There's been an uptick in phish purporting to come from department heads or even higher that containing an attachment or link to online document. The hope is to get the recipient to react quickly and open or link to the document. Always double check the sending address and give thought if this message is something you would expect from the sender. |
1-10 of 82