Vane3alga

Business
Focused
Technology

Using a fake internal memo from HR, per-user custom-named email attachments, SharePoint Online, and a realistic-looking HR form, this phishing attack has all the ingredients to trick your users.

it360 feb 01

This far into the pandemic, there are groups of users within your organization begging to come back to the office, as well as those that never want to set foot in the office again. This emotional attachment to either sentiment is the basis for this newest scam, documented by security researchers at Abnormal Security.

The scam appears to come from internal HR, informing users of dates that the offices are expected to reopen and when employees should return to the office to work. Each contains an HTML attachment with the victim’s name on it (see below).

it360 feb 02

Unlike most html attachments, the link doesn’t take the user to a malicious webpage; instead it takes them to a SharePoint Online document that appears to be an HR document the user is required to acknowledge. This use of a legitimate Office 365 SharePoint site helps these attacks bypass security and find their way to the user’s Inbox.

The most dumbfounding part of this attack is how the user is tricked out of their credentials. At the end of the HR form, they are simply asked for their email address (which is presumed to be their username) and then asked to enter in their password as a means to establish identity as part of agreeing to the presented HR policies. Anyone who understands when and where passwords would be used can easily see this isn’t one of those times.

The scam is a good one – it uses evasive techniques to ensure delivery, establishes legitimacy and urgency, and quickly seeks to reach its malicious goal. Users that have undergone Security Awareness Training should be able to spot this as being a scam, keeping their credentials – and your organization – secure.


SOURCE: KnowBe4.com

Success Stories

Partner, Law Firm

We hired IT360 as our computer hardware and software computer consultants when the company first went into business. Since then, they have helped us purchase new software and hardware equipment that we have instituted into the law firm. Any time we needed them to be there they have been. They have solved all of our problems including: stand alone computers, networking issues, Internet access issues, and software. I would highly recommend IT360 to anybody who needs help in these areas.

Partner, Law Firm

Recent
Technology News

IT 360 News - Digital Independence: What America’s 250th Birthday Teaches Us About Cybersecurity in 2026
Digital Independence: What America’s 250th Birthday Teaches Us About Cybersecurity in 2026

Digital Independence: What America’s 250th Birthday Teaches Us About Cybersecurity in 2026 As the United States celebrates its 250th year of independence this July 4, 2026, there’s a powerful question for modern organizations: What does independence look like in a digital world?  Two hundred fifty years ago, independence meant freedom from external control. Today, it […]

Read more
IT 360 News - Why ‘Working Fine’ Is Silently Holding Your Business Back
Why ‘Working Fine’ Is Silently Holding Your Business Back

Most IT environments don’t fail dramatically. They linger. For many organizations, systems are “working fine” — emails go through, files are accessible, users can log in — so problems don’t feel urgent. But beneath the surface, that fine often comes with hidden costs: slower response times, manual workarounds, duplicated effort, security gaps, and growing dependence […]

Read more