Oops! You have fallen for a phishing attack test.
WHAT IS A PHISHING ATTACK
Phishing is a type of social engineering attack often used to steal user data, including login credentials and credit card numbers. It occurs when an attacker, masquerades a trusted entity, dupes a victim into opening an email, instant message, or text message. The recipient is then tricked into clicking a malicious link, which can lead to the installation of malware, the freezing of the system as part of a ransomware attack or the reveal of sensitive information. An attack can have devastating results. For individuals, this includes unauthorized purchases, the stealing of funds, or identity theft.
Moreover, phishing attacks are used to gain access into private and public networks as a part of a larger attack, such as long-term presence on a network in order to mine highly sensitive data. In this latter scenario, employees are compromised in order to bypass security perimeters, distribute malware inside a closed environment, or gain privileged access to secured data.
An organization succumbing to such an attack typically sustains severe financial losses in addition to personal data loss of their employees.
What can you do to identify a phishing attack?
- Verify the sender's email address that it is from a reliable source. Our domain @d23.org is indeed a trusted source, but we do not porivide Google security services.
- Inspect the text of the email for grammatical errors.
- If you get as far as clicking the link, you can then look at the address bar, if the address doesn't read a valid Google address and take you somewhere else you should not enter email credentials. The valid address for the Google site reads accounts.google.com.
In any event, if you believe an email is suspicious never hesitate to contact your tech team!
D23 Tech Team