Welcome to the ‘Phish Tank!’🪝
Every day, cybercriminals are casting their lines, hoping someone will take the bait. Phishing emails are one of the most common and dangerous threats to our District’s security, but the best defense is awareness!
In each issue of ‘Phish Tank’, we’ll highlight real phishing attempts that have made their way into our inboxes—so you can see exactly what to watch out for. We’ll break down the red flags in each email and talk about what makes them suspicious. The more tricks you recognize, the less likely you are to get hooked!
The email:
What makes it suspicious?
🚩 Unfamiliar Sender (makehamscoaches.com.au) - The sender claims they are with Hilton, yet this email comes from an email address not associated with the Hilton company.
🚩 Generic Greeting (Dear Partner) - Legitimate businesses typically address recipients by name. A generic greeting is a common phishing tactic.
🚩 Unexpected Attachment (Payment Advice.svg) - The email urges you to click on an attachment. If you weren't expecting a payment, be wary of opening attachments, as they may contain malware.
🚩 Urgency & Financial Details – Mentioning a specific payment value can make the email seem more convincing, luring recipients into opening the attachment without second-guessing.
What do I do if I receive an email like this?
If you receive an email similar to one in our Phish Tank series, please report it using the Phish Alert Button (PAB) in your email client. Your email may even get featured in this newsletter!
For detailed instructions on how to report an email with the PAB, please refer to the following resources:
