On March 16, the NJCCIC observed a phishing campaign impersonating Office 365 and using the subject line, “[Recipient Email Domain] Expired Password Notification Thursday, March 16, 2023.” The email alerts the recipient that their password will expire soon and informs them that they may continue using the same password by clicking the included link. The email further establishes urgency by stating that the task must be completed to avoid email disconnection.

On March 16, the NJCCIC observed a phishing campaign impersonating Office 365 and using the subject line, “[Recipient Email Domain] Expired Password Notification Thursday, March 16, 2023.” The email alerts the recipient that their password will expire soon and informs them that they may continue using the same password by clicking the included link. The email further establishes urgency by stating that the task must be completed to avoid email disconnection.

The NJCCIC advises users to refrain from clicking on links in unexpected emails from unverified senders and to remain cautious with emails from known senders. If a suspicious email appears to originate from a legitimate sender, confirm its authenticity via another form of communication. Threat actors may impersonate well-known services and hosting providers such as Dropbox and Amazon. Users are encouraged to verify the legitimacy of a website before entering account credentials. The NJCCIC recommends enabling multi-factor authentication (MFA) for all of their accounts. Phishing emails and other malicious cyber activity can be reported to the FBI’s Internet Crime Complaint Center (IC3) and the NJCCIC.

For any further questions, contact us here at Cyber Command.