Your company is participating in a Cyber Security Education Program.
This Electronic Invite Phishing Attack included the following social engineering techniques:
- Topical/Timely subject: (example) Summer BBQ.
- Use of a "lure email" to lower your guard when receiving the actual phishing email which may be filtered into "junk mail".
- Use of a greeting card logo to look authentic.
- Spoofed domain to appear it comes official domain (example: invite.lang-fr-en.ca).
How to spot this was a phishing email:
- Was this an email you expected to receive? No - Be cautious
- Did your company indicate this event was going to occur?
- The sender named email address was not coming from greeting company (example: invite@lang-fr-en.com).
- The primary domain was not correct for greeting card company (example: official domain www.hallmark.com).
- The actual phishing email was potentially filtered by junk mail to help indicate it may be un-invited.
