Information Services > Security > News & Updates > Document Review Phishing - 09/20/21

Document Review Phishing - 09/20/21

Screenshot of malicious email:

A screenshot of a malicious email. The email attempts to trick victims into believing that they need to click a maliciuos link to review a fake document.

On September 20th, 2021, a phishing email was spammed out from compromised DePaul University email account(s). 

The malicious email purports that the recipients pending "document" that needs to be "reviewed" and "signed". The email also uses logos from a document services company, in attempt to make the phishing email look official.

The link takes victims to a non-DePaul Excel form and is set up by the malicious actors to harvest the credentials of victims.

It is always important to remain vigilant when handling email, even when it appears to come from a DePaul email address or other official looking email address. Email addresses and login portals can be spoofed and imitated. Compromised email accounts (e.g. if a fellow DePaul community member fell victim to phishing) are often used to target the community. Keeping your DePaul account secure helps keep the entire community secure.

Some indicators that this email is malicious:
- Spelling errors
- A lack of any context surrounding the document and cold contact
- An attempt to create a sense of urgency
- URL-shortened hyperlink to a non-DePaul website (remember to hover over hyperlinked text to view the underlying URL)​​​​