Phishing Email Scam: Cybersecurity Update

Phishing Email Breakdown 

This phishing attempt disguised itself as a cybersecurity update, prompting recipients to click a link to update their account credentials. However, the link directed them to a malicious site, unrelated to McMaster, created to steal personal information. The email also included legitimate best practices to make it seem more convincing. 

Visual Example of the Phishing Email

Full Text from the Phishing Attempt 

Dear user, 

We’re continuously enhancing our cybersecurity measures to protect our team and company information. To align with these efforts, we kindly ask all employees to update their account credentials at their earliest convenience. 

Steps to Update Your Credentials: 

1. Go to the security update portal by clicking here.
2. Follow the on-screen instructions to create a new secure login. 
3. Choose a strong and unique password that has not been used elsewhere. 

Security Best Practices: 

• Enable Multi-Factor Authentication (MFA) in your account settings. 
• Be cautious with emails and avoid interacting with unexpected requests. 
• Ensure your systems and applications are updated regularly. 
• Keep your workstation secure and do not store sensitive data on personal devices. 
• Report any suspicious activity to the IT team immediately. 

Deadline: 

This action must be completed by {date} to ensure uninterrupted access. 

Thank you for your attention to this important matter. 

Best regards, 

{name} 

This is a system-generated message. Please do not reply directly. 

How to Protect Yourself? 

1. Verify the Sender: Always verify the identity of individuals claiming to be someone important, especially if the message seems out of the ordinary and asks for personal information. 
2. Avoid Clicking on Suspicious Links: Hover over or copy the link to view the complete domain name. Scammers often create URLs that resemble authentic ones by inserting subtle misspellings or extra characters. If the link looks suspicious, it’s safer to visit the official website directly or use a reputable search engine to find the correct webpage. 
3. Be Mindful of Generic Greetings: Phishing emails commonly start messages with “Dear User” or “Dear Sir/Madam” rather than using your real name. Legitimate messages typically include your actual name or specific account details. 
4. Check Branding, Formatting, and Logos Carefully: Phishing emails may imitate official layouts or use low-quality, off-colour logos. Verify that logos, colours, and the overall format matches what you typically see from the genuine organization. 

Important Notes: 

1. Report Suspicious Messages: Reporting phishing attempts helps prevent others from falling victim to these attacks. Send suspicious messages to is-spam@mcmaster.ca for review and investigation. 
2. Educate Yourself: Learn about common phishing tactics. Consider participating in the Information Security Training Program to protect against cyber threats and secure your digital world.