{"id":174,"date":"2025-01-16T15:47:36","date_gmt":"2025-01-16T20:47:36","guid":{"rendered":"https:\/\/www.montclair.edu\/phish-files\/?p=174"},"modified":"2026-02-16T13:34:47","modified_gmt":"2026-02-16T18:34:47","slug":"ref-mail-draw-statement","status":"publish","type":"post","link":"https:\/\/www.montclair.edu\/phish-files\/2025\/01\/16\/ref-mail-draw-statement\/","title":{"rendered":"REF: Mail Draw Statement"},"content":{"rendered":"<h2>Why this looks valid:<\/h2>\n<ul>\n<li>Email states it&#8217;s coming from a faculty\/staff member.<\/li>\n<li>Email body states that the file is confidential and is only accessible via link.<\/li>\n<\/ul>\n<h2>Why this is phishing?<\/h2>\n<ul>\n<li>Email subject and body are vague to entice an unsuspecting user to click the link.<\/li>\n<li>Link available via the button in this email does not lead to a legitimate location.<\/li>\n<li>Once link is interacted with it leads to a fake Google login page to capture login credentials.<\/li>\n<\/ul>\n<h2>Additional Notes:<\/h2>\n<ul>\n<li>Do you think you&#8217;ve fallen for a scam? Did you share personal information? Downloaded malicious content? Please contact the IT Service Desk at <a href=\"tel:973-655-7971\">973-655-7971<\/a>\u00a0option 1 or email <a href=\"mailto:itservicedesk@montclair.edu\">itservicedesk@montclair.edu<\/a>.<\/li>\n<li>Please send any malicious emails you have received to <a href=\"mailto:phishfiles@montclair.edu\">phishfiles@montclair.edu<\/a> or by clicking the <a href=\"https:\/\/www.montclair.edu\/information-technology\/security\/pab\/\">Knowbe4 Phish Alert Button (PAB)<\/a>.<\/li>\n<li>Always use the &#8220;hover over&#8221; technique to check web links before clicking! For more security tips please visit our <a href=\"https:\/\/www.montclair.edu\/information-technology\/security\/security-tips\/\">Security Tips<\/a> page.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Why this looks valid: Email states it&#8217;s coming from a faculty\/staff member. Email body states that the file is confidential and is only accessible via link. Why this is phishing? Email subject and body are vague to entice an unsuspecting user to click the link. Link available via the button in this email does not [&hellip;]<\/p>\n","protected":false},"author":349,"featured_media":175,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[3],"tags":[],"class_list":["post-174","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-phishing"],"_links":{"self":[{"href":"https:\/\/www.montclair.edu\/phish-files\/wp-json\/wp\/v2\/posts\/174","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.montclair.edu\/phish-files\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.montclair.edu\/phish-files\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.montclair.edu\/phish-files\/wp-json\/wp\/v2\/users\/349"}],"replies":[{"embeddable":true,"href":"https:\/\/www.montclair.edu\/phish-files\/wp-json\/wp\/v2\/comments?post=174"}],"version-history":[{"count":8,"href":"https:\/\/www.montclair.edu\/phish-files\/wp-json\/wp\/v2\/posts\/174\/revisions"}],"predecessor-version":[{"id":1397,"href":"https:\/\/www.montclair.edu\/phish-files\/wp-json\/wp\/v2\/posts\/174\/revisions\/1397"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.montclair.edu\/phish-files\/wp-json\/wp\/v2\/media\/175"}],"wp:attachment":[{"href":"https:\/\/www.montclair.edu\/phish-files\/wp-json\/wp\/v2\/media?parent=174"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.montclair.edu\/phish-files\/wp-json\/wp\/v2\/categories?post=174"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.montclair.edu\/phish-files\/wp-json\/wp\/v2\/tags?post=174"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}