We're seeing another increase in the number of phishing emails sent to school staff and users. One in particular has caught out a significant number of schools in the past few days. There are a few examples below:
From: GreatCasterton Office greatcastertonoffice@rltschools.com
Sent: 21 November 2022 16:33
Subject: Great Casterton CE Primary SchoolPlease see the shared Great Casterton CE Primary School document for your reference, let me know if you have any questions.
Great Casterton CE Primary School | file (Total 29.5 KB)
VIEW DOCUMENTThanks.
- and -
From: [email address removed]
Sent: 14 November 2022 13:18
Subject: Inspire+Kindly see the shared Inspire+ document for your reference, let me know if you have any questions.
Inspire+ | file (Total 54.5 KB)
VIEW DOCUMENT Thanks.
If you click the link, then you will be redirected to a page that asks you for your username and password.
Checking the address bar (outlined in red) shows that you are not actually signing in to https://login.microsoftonline.com/ and are instead signing in somewhere else. Note that the only safe place to sign in is https://login.microsoftonline.com/.
Entering your username and password on this page will send that data to cyber criminals who may then use it in further attacks.
What should you do?
- Do not open attachments, or click on links unless you are totally confident that they are safe.
- You can mark these emails as phishing. This helps to train Microsoft's algorithms that detect phishing attacks and prevent them from reaching your inbox.
- You can also forward these emails to the IT helpdesk (itsupport@bdmat.org.uk) to help us build rules that block them. In some cases we are able to add warnings to emails, or block them outright.
If you have opened an attachment or link and entered your password, please change your password immediately and then send an email to itsupport@bdmat.org.uk.
Comments
0 comments
Please sign in to leave a comment.