Phishing Email Summary
This phishing email attempts to trick recipients by claiming to contain a document for their review. The phish links to a fake Outlook Web Access login page designed to steal user credentials. If you receive similar email:
- Do not open or download unexpected attachments, especially if you do not know the sender.
- Check with the sender if you know them but didn't expect the message or attachment.
- Check the URL before you log in to any site to make sure it's not a fake.
A text only example of the phishing email is given below, as well as a screenshot of the email as originally formatted, and a screenshot of the fake Outlook page.
Phishing Email Text
Citrix Attachments for umich.edu
User: [uniqname removed]
Expires July 21, 2020
Trading Platforms For Approval.xlsx
umich.edu uses Citrix Files to share documents securely.