{"id":456,"date":"2018-09-24T14:42:21","date_gmt":"2018-09-24T18:42:21","guid":{"rendered":"http:\/\/pages.vassar.edu\/catchoftheday\/?p=456"},"modified":"2018-09-24T14:42:21","modified_gmt":"2018-09-24T18:42:21","slug":"reminder-vassar-employee","status":"publish","type":"post","link":"https:\/\/pages.vassar.edu\/catchoftheday\/reminder-vassar-employee\/","title":{"rendered":"Reminder:  Vassar Employee"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-457\" style=\"border: 2px solid #0000ff\" src=\"http:\/\/pages.vassar.edu\/catchoftheday\/files\/2018\/09\/September24thReminderEmail.jpg\" alt=\"\" width=\"600\" height=\"370\" srcset=\"https:\/\/pages.vassar.edu\/catchoftheday\/files\/2018\/09\/September24thReminderEmail.jpg 600w, https:\/\/pages.vassar.edu\/catchoftheday\/files\/2018\/09\/September24thReminderEmail-300x185.jpg 300w\" sizes=\"auto, (max-width: 600px) 100vw, 600px\" \/><\/p>\n<p>&nbsp;<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-458\" src=\"http:\/\/pages.vassar.edu\/catchoftheday\/files\/2018\/09\/September24thReminderForm.jpg\" alt=\"\" width=\"600\" height=\"368\" srcset=\"https:\/\/pages.vassar.edu\/catchoftheday\/files\/2018\/09\/September24thReminderForm.jpg 600w, https:\/\/pages.vassar.edu\/catchoftheday\/files\/2018\/09\/September24thReminderForm-300x184.jpg 300w\" sizes=\"auto, (max-width: 600px) 100vw, 600px\" \/><\/p>\n<p><!--more--><\/p>\n<h2>Why this looks valid<\/h2>\n<ul>\n<li style=\"font-weight: 400\">The message appears to be from Vassar College.<\/li>\n<li>The explanation in the email seems legitimate.<\/li>\n<\/ul>\n<h2>Why this is phishing<\/h2>\n<ul>\n<li>The originating email address is not from an internal Vassar account.<\/li>\n<li>Before taking the survey, the website asks for a password through a login screen that is not similar to any Vassar College service.<\/li>\n<li>The login screen is branded as &#8220;US Oncology Network Employee Authentication&#8221;.<\/li>\n<li>Any survey sent from HR or the President&#8217;s Office is preceded by an announcement email that clearly states where the survey is from and when it will be received; in this case no such initial email was sent.<\/li>\n<\/ul>\n<h2>Additional notes<\/h2>\n<ul>\n<li><em><strong>We&#8217;ve seen this one before.<\/strong>\u00a0 <\/em>Criminals attempt the same tactics many times.\u00a0 Check this post from 2017:\u00a0 <a href=\"https:\/\/pages.vassar.edu\/catchoftheday\/2017\/10\/30\/employee-engagement-feedback\/\">https:\/\/pages.vassar.edu\/catchoftheday\/2017\/10\/30\/employee-engagement-feedback\/<\/a><\/li>\n<li style=\"font-weight: 400\"><strong><em>This is an extremely dangerous Phishing attempt.<\/em><\/strong> If you clicked on this link and submitted your password, please contact the Service Desk immediately at x7224 or <a href=\"mailto:servicedesk@vassar.edu\">servicedesk@vassar.edu<\/a><\/li>\n<li style=\"font-weight: 400\">Always examine the link! Look at the information in your web browser to determine whether or not the site you are directed to is a Vassar site or an unknown (or suspicious) one.<\/li>\n<li style=\"font-weight: 400\">Report it as phishing to Google. Before deleting the message, make sure to click on \u201creport phishing&#8221;.<\/li>\n<li style=\"font-weight: 400\">A little paranoia goes a long way! Be suspicious of any email messages similar to this one.<\/li>\n<li style=\"font-weight: 400\">Did you know: the best way to protect your accounts is by using multi-factor authentication. See our recent post here: <a href=\"http:\/\/pages.vassar.edu\/catchoftheday\/2017\/06\/29\/best-practice-enabling-multi-factor-authentication-with-duo\/\">http:\/\/pages.vassar.edu\/catchoftheday\/2017\/06\/29\/best-practice-enabling-multi-factor-authentication-with-duo\/<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>&nbsp;<\/p>\n","protected":false},"author":8,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[80936],"tags":[],"class_list":["post-456","post","type-post","status-publish","format-standard","hentry","category-phishing"],"_links":{"self":[{"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/posts\/456","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/comments?post=456"}],"version-history":[{"count":1,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/posts\/456\/revisions"}],"predecessor-version":[{"id":459,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/posts\/456\/revisions\/459"}],"wp:attachment":[{"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/media?parent=456"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/categories?post=456"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pages.vassar.edu\/catchoftheday\/wp-json\/wp\/v2\/tags?post=456"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}