Skip to main content
 

2 “Shared with You” Phishing Emails sent to MHC Employees October 7th

On the morning of October 7th, many MHC employees were targeted by phishing emails claiming to be file shares from President Tatum.

This phishing method attempts to trick users into clicking through the email and entering their MHC credentials to view the files.  The appearance of inferred action by a person in leadership is a hallmark of these threats. Be attentive and skeptical of any share notices that you are not expecting, especially if they seem to come from someone in a position of authority.

Remember that you should never click links or download attachments in messages that you weren’t expecting or that come from outside our organization.

Here are screenshots of the messages employees received:

File shared with you phishing message with the non-MHC email and other suspicious features highlighted.

File share from a princetonk12.org email address that says “Anna Achampong shared a file with you. Fw: Dr. Beverly Daniel Tatum (Interim President) has shared a file with you Via OneDrive. 2022-2023 Salary Increases for Faculty & Staff and merit Compensation. This link will work for anyone.” Red circles and text highlight the non MHC email address and point out that MHC doesn’t use OneDrive.

file shared with you phishing email with the non-MHC email sender and other suspicious elements highlighted.

File share from a daytonsd.org email address that says “Karin Spann shared an item. Fw: Dr. Beverly Daniel Tatum shared a file with you Via OneDrive. 2022 Employee Report.pdf.” There is a warning that Karin Spann is from outside MHC. Red circles and text highlight the non MHC email, point out that MHC doesn’t use OneDrive, and recommend heeding the “outside your organization” warnings.