Information Services > Security > News & Updates > Verify Your Office 365 - 4-17-22

Verify Your Office 365 - 4-17-22

​​​Screenshot of malicious email:

Example of malicious email notifying the user that they have two different logins for office 365

​On April 17th, 2022 a phishing email was spammed out from a compromised DePaul University email account. 

The malicious email purports that the recipient has two Office 365 accounts and must enter their correct username and password at the link provided to maintain their access.

The link takes the victims to a non-DePaul website that is setup by the malicious actors to harvest the credentials of the victims.

It is important not to take emails at face value, even when it appears to come from a DePaul or other known address.

Some indicators that this email is malicious:
- An attempt to create a sense of urgency
- Hyperlink to a non-DePaul website
- Grammatical errors​