Your IT Consultant

Information Technology Blog
by John W. Simek, Vice President of Sensei Enterprises, Inc.

Another Phishing Scam – Manage Your Undelivered Email

June 3, 2019

Another day, another phishing scam. It never ceases to amaze me at the clever ways the bad guys come up with ways to get user information. A new phishing scam tries to get a user to give up their email logon credentials. The scam starts with a message that pretends to be a list of undelivered email being held for you on your Outlook Web Mail service. The phishing email prompts you to decide whether you want to deliver all of the emails, whitelist them for the future, deny them, or delete them. It doesn’t matter which link you click as you will be directed to a fake “Outlook Web App” landing page that asks you to enter your logon credentials, thereby stealing access to your real email account. If there is any silver lining here, the bogus logon page is hosted on a hacked site and not a Microsoft Azure site. As usual, pay attention to the email messages you receive and the URLs that show up in the browser page.

Email:   Phone: 703.359.0700
Digital Forensics/Cybersecurity/Information Technology
https://www.linkedin.com/in/johnsimek
https://amazon.com/author/johnsimek
https://senseient.com