Phishing Training

Unfortunately, you clicked on a simulated phishing email...

Luckily this was a simulation and your password is still safe.

Please take some time to review the information below which helps to show what you should look for in future questionable emails.

Remember these tips to avoid getting scammed

example of what a phishing email looks like

 

  1. Access to OneDrive Document for Review: this is an email that comes without indication it was being sent for review, use caution and review the details of the email carefully.
  2. Sender address: Please pay attention to the address that is sending emails. The sending address here is not from Pace but is PaceOneDrive@edu.com.
  3. The hyperlinked text can be used to hide a malicious URL. By hovering over this text, you can observe where this URL really redirects to.

Pay attention to the details when you are using the internet

screenshot of a fake pace portal login page that the user interacted with
  1. Please note that this website is not Pace’s legitimate site based on the URL in your browser. The correct URL link for the Pace Portal page would contain https://portal.pace.edu/, everything before the first forward slash “/” is the site you are actually going to visit by clicking the URL link.
  2. Another indication is that the “login” button seems off or phishy. While this may not always be present, anything that seems “off” is an indicator that a site may not be legitimate.

Scammers can make fake pages that look almost like the real thing

a fake version of the Pace two factor authentication page
  1. Please note that this website is not Pace’s legitimate Duo login site based on the URL in your browser. The correct Duo login site would contain https://api-afcb1ea8.duosecurity.com/ or something similar with duosecurity.com before the first forward slash “/”
  2. Another indication is that the “passcode” text field seems off or phishy. While this may not always be observable, anything that seems “off” is an indicator that a site may not be legitimate.