Screenshot of malicious email:
On November 18th, 2021, a phishing email was spammed out from a compromised DePaul University email account.
The malicious email impersonates DePaul University's helpdesk in the signature block of the email, and purports that the recipients mailbox is almost full and must click on a link to keep their increase their mailbox storage.
The link takes victims to a non-DePaul website and is set up by the malicious actors to harvest the credentials of victims.
It is important not to take email at face value, even when it appears to come from a DePaul or other known address.
Some indicators that this email is malicious:
- Impersonation of an official department/group at DePaul
- An attempt to create a sense of urgency
- Hyperlink to a non-DePaul website (remember to hover over hyperlinked text to view the underlying URL)