Oops! You fell for a phish!
This is a simulated phishing exercise by your department.
If this had been an actual attack, clicking the link would have sent you to a dangerous site and exposed your system to ransomware, malware, or another cybersecurity threat.
When you receive an unsolicited email with embedded web links, keep the following tips in mind:
- Be immediately suspicious if the message tries to scare you, offers an incredible deal, or prompts you to reset a password or update account information.
- Check each link by hovering over it to see its true source. If the URL is unfamiliar or differs from what you expected to see, don’t click.
- Verify claims and offers via a trusted website or known phone number.
- Contact your IT support staff for advice if you’re unsure.
- Report suspicious emails to your IT support staff.
For questions about this simulated phishing exercise, please contact the Office of Information Security at phishing@isc.upenn.edu.
_______________________________________________________________________________
