|
|
|
|
This is Emy.
Emy receives many emails throughout the day.
Emy always reports suspicious emails.
Emy only enters her credentials on trusted sites.
Be smart.
Be like Emy.
|
|
|
|
Insight:
Phishing Emails
|
Phishing attacks are becoming increasingly common and frequent.
Last year, 94% of worldwide companies experienced at least one cybersecurity incident via email
(info).
In our company, one of the most common phishing emails is the one that mimics communication from DocuSign. Here is an image:
|
|
The email simulates the sharing of a document via DocuSign. It invites the recipient to click on the button to view the shared file. This link redirects to a FAKE Microsoft login page. The attacker’s goal is to steal the recipient's corporate login credentials in order to gain access to all Microsoft 365 services (Outlook, SharePoint, Teams, etc..).
It is important to pay close attention whenever your credentials are requested, ensuring that the domain is that of the legitimate site and remembering that, once you have already accessed Microsoft 365 services, the password should not be required. Therefore, always be suspicious when you need to manually enter your password!
Unfortunately, current email security systems cannot intercept all malicious emails received. For this reason, user reporting is crucial for identifying these emails.
Don’t know how to report suspicious emails? By clicking the button below, you will be redirected to a guide on the topic (it is not a phishing link!!).
Be smart
Be like Emy.
|
|
|
|
|
|
