Subject: "John Doe shared 'A V Party Rentals.pdf' with you"
Phishing emails can sometimes originate from legitimate addresses. Scammers often use file-sharing services like OneDrive or Dropbox to send malicious files or links because the email comes from a trusted domain (no-reply@dropbox.com). Below is an example of a file with a malicious link shared via Dropbox:
Clues:
- The use of a dash (-) in the body of the email address and the misspelling of "John."
- The use of a personal email address (@outlook.com) instead of a business domain, which often signals that the email is not from a legitimate company.
- The message included with the file, "PO" is short and vauge.
What should I do if I receive a similar email?
If you receive an email from a file-share service such as OneDrive or Dropbox and you are in any way unsure of the sender, message, or file, please do not click on anything in the message. Instead, report the email to IT using the Phish Alert Button:
