The email you received was part of a phishing test. Phishing tests are conducted to help individuals learn about the numerous risks that can be associated with emails. By conducting these tests our hope is that you will learn how to detect and avoid falling victim to future phishing attacks.

This attack was designed to test if you would click on malicious links. When a user receives an email they should be aware that a link contained in the email may lead to a malicious website. In many cases, simply clicking the link is all it takes for a user's desktop or mobile device to become compromised. You should always be suspicious of all emails and be extremely cautious about clicking on a link, even if the email appears to come from a trusted source.

This particular payload contains an email that appears to be a notification of an unheard voicemail. The email requires you to click a link to access the voicemail. When you clicked the link, you failed the test.

To help reduce your risk of future compromise, please take a moment to review the information provided below. In addition, an educational course may have been assigned to you.

Important Facts:

Don't click on links or open attachments in emails unless you are certain they are safe. This is how malware is mainly delivered, so it is largely in your control to stay malware free.

If the link or attachment is from a fellow employee, it's better to place a phone call to the sender to validate that it or the attachment was intended.

You can see the actual URL by hovering your mouse pointer over the link. However, keep in mind that phishing scams are getting much better at creating URLs that are very similar to the URL in the scam. So we recommend that you manually type the URL into your browser, just to be safe.

Many times, phishing email messages are sent by those who are not proficient in the language of the users they are targeting. Phishers may also struggle with correct use of grammar, make typos, and fail to punctuate correctly. While many native speakers also struggle with this, professional organizations typically make sure their messages do not get sent that way.

Never type confidential information, such as login credentials, into anything that gets sent via email. Most email is not secured and traverses the Internet in plain text.

IMPORTANT NOTICE:
The email you received was sent from Stickley on Security Inc. and not from the company whose name was mentioned in the body of the email message as that company has no association with Stickley on Security Inc. and does not endorse the services offered by Stickley on Security Inc.
The purpose of this message is to demonstrate how phishing articles can come in emails that deceptively appear to be from reputable companies.

In addition, this test was approved by the organization BREMER WHYTE BROWN & OMEARA, LLP.

© Copyright 2024