Your company is participating in a Cyber Security Education Program.
This Account Verification Phishing Attack included the following social engineering techniques:
- Email which would be associated with your work email (example: payroll).
- A time limit before account deactivation.
- Use of your email to personalize the message.
- Spoofed domain from a company aligned with email (example: adp.lang-en.ca).
- Simplified button/hyper link using spoofed domain to make it easy to engage.
How to spot this was a phishing email:
- Was this an email you expected to receive? No - Be cautious
- Was there a notice of a change of provider or service?
- The sender named email address was generic (example: register@lang-en.ca)
- The primary domain was not correct/spoofed off the actual company domain (example: adp.ca is official domain)
- The link provided used suspicious/spoofed domain similar to above (example: adp.lang-en.ca).
