Phishing Alert: New Document Received

Some U-M community members reported receiving this email. It is fraudulent or malicious. Do not respond, click any link in it, or provide personal information or money. See Phishing & Scams for more tips. If you need help, contact the ITS Service Center.

Date Sent: 
Tuesday, July 14, 2020

Phishing Email Summary

This phishing email attempts to trick recipients by claiming to contain a document for their review. The phish links to a fake Outlook Web Access login page designed to steal user credentials. If you receive similar email:

  • Do not open or download unexpected attachments, especially if you do not know the sender.
  • Check with the sender if you know them but didn't expect the message or attachment.
  • Check the URL before you log in to any site to make sure it's not a fake.

A text only example of the phishing email is given below, as well as a screenshot of the email as originally formatted, and a screenshot of the fake Outlook page.

Phishing Email Text 


Citrix Attachments for

User: [uniqname removed] 

Expires July 21, 2020

Trading Platforms For Approval.xlsx

1.9 MB

Download Attachments uses Citrix Files to share documents securely.

Phishing Email or Site Screenshot: 
Screenshot of the originally formatted phishing email. This email was formatted as a table with links in it.
Screenshot of the fake Outlook login page. Always check the URL of a page before logging in.