Currently at MCC we are seeing phishing emails similar to the one below:
We are currently seeing a significant increase in fake job offers by email.
In the sample above, the link in the email appears to direct you towards an MCC link. However, it does not. It instead takes you to a web form that asks users for personal and private information.
NEVER disclose your personal or private information.
A bad actor will use your cell phone number to obtain access to your accounts inside and outside of MCC.
Below is an example of a recent text message received by an MCC user. This tactic is used to bypass MFA (multi factor authentication). MCC uses Okta as our MFA tool.
How to Identify a Phishing Email:
- Non-Personalized Greetings: Watch out for generic salutations. Phishing emails often lack personalization.
- Errors in Spelling and Grammar: Be alert to mistakes in spelling and grammar. Professional emails usually don't have these errors.
- Pressuring Language: Beware of urgent or threatening language demanding immediate action. This is a common tactic in phishing attempts.
- Requests for Sensitive Information: NEVER give out passwords, bank details, or other sensitive information in response to an email request.
- Suspicious Links or Attachments: Check if the links or attachments match the sender's domain. Phishers often use misleading links that appear legitimate.
- Mismatched Email Domains: Verify the sender's email address. It should align with the legitimate organization they claim to represent. A mismatch is a red flag.
Always stay vigilant and think twice before responding to emails that exhibit these warning signs.