CalTech CyberDefense - Scam of the Month: Phishing Attacks Using Employee Benefits and Pay Raises as Bait
Attackers often use corporate-focused phishing attacks to gain access to businesses. Similar attacks include spearphishing with fake invoices, malicious links contained in SharePoint files, and HTML attachments posing as voicemail notifications.
Performance review phishbait is a little out-of-the-ordinary, although not unheard of, and the urgency of completing such reviews on time can rush the unwary into swallowing a hook they might otherwise spit. You need to be extremely careful about where you enter your credentials and you need to report potential phishing attacks even if you have already fallen for them.
Stop, Look, and Think.
Don't be fooled.
Download our "Top 5 Most Common Cybersecurity Gaps for 2020"!