Your company is participating in a Cyber Security Education Program.
This Survey Phishing Attack included the following social engineering techniques:
- Corporate all hands email: (subject: "<Company> ... Survey.")
- Timing critical (example: by <date>.)
- From email name and fake email address using a service your company uses ("<service survey> (info@<service.com>).")
- Limited information provided to make you curious and entice you to click the malicious link.
How to spot this was a phishing email:
- Was this an email you expected to receive? No - Be cautious
- Confirm with management or human resources.
- Always review sender email and determine if suspicious (example: 2 email addresses exists)
- The primary domain (example: diopbox.com) is not associated with the survey company.
- This email was/may have been filtered and in your junk mail folder.
