{"id":486,"date":"2018-12-05T09:03:53","date_gmt":"2018-12-05T14:03:53","guid":{"rendered":"http:\/\/pages.vassar.edu\/catchoftheday\/?p=486"},"modified":"2018-12-05T09:04:32","modified_gmt":"2018-12-05T14:04:32","slug":"someone-sent-you-files-via-wetransfer","status":"publish","type":"post","link":"https:\/\/pages.vassar.edu\/catchoftheday\/someone-sent-you-files-via-wetransfer\/","title":{"rendered":"Someone sent you files via WeTransfer"},"content":{"rendered":"
<\/p>\n
<\/p>\n
<\/p>\n
<\/p>\n
Why this looks valid<\/h2>\n
\n
The email came from a company that the college does business with.<\/li>\n
It is common for companies to send invoices or other information through a file sharing platform.<\/li>\n
WeTransfer is a valid document sharing site.<\/li>\n<\/ul>\n
Why this is phishing<\/h2>\n
\n
The shared document is a PDF that launches another website, which does not<\/em> go to the company or any known website.<\/li>\n
The link asks to select a login service and then launches a login screen that does not resemble any Vassar College login screens.<\/li>\n
We’ve seen this one before! The method of sending a PDF with an embedded link that then launches a phishing site is becoming increasingly common.\u00a0 Review previous Catch of the Day posts to see more examples.<\/li>\n<\/ul>\n
Additional notes<\/h2>\n
\n
This is an extremely dangerous Phishing attempt. If you clicked on this link and may have completed the form, please contact the Service Desk immediately at x7224 or servicedesk@vassar.edu<\/a><\/li>\n
![\"\"](\"http:\/\/pages.vassar.edu\/catchoftheday\/files\/2018\/12\/Dec4WeTransfer1.jpg\"){kind=spacer}
<\/p>\n![\"\"](\"http:\/\/pages.vassar.edu\/catchoftheday\/files\/2018\/12\/Dec4WeTransfer2.jpg\"){kind=spacer}
<\/p>\n![\"\"](\"http:\/\/pages.vassar.edu\/catchoftheday\/files\/2018\/12\/Dec4WeTransfer3.jpg\"){kind=spacer}
<\/p>\n