Threat Alert: What to Watch For

• Cybercriminals have launched a campaign distributing malware with an AI-themed lure.  
• The lure purports to be from an “Information Technology Manager” regarding a mandatory system update for employees. 
• The email body directs recipients as to how they can download the new AI-powered software.
• Cybercriminals frequently attempt to create a sense of urgency or “call to action” in their lures.
• While the email claims to be from an “Information Technology Manager,” the email’s sending address is from a suspicious domain and not a trusted internal source.

Key Action: Report Suspicious Emails

• Report ANY suspicious emails using the Phish Alarm button in your email menu bar. 
• Remember: Our organization occasionally sends phishing simulations that are used to evaluate the potential impact of a real phishing attack. Report any emails that match the tactics described above. 
• If a reported message is a simulation, you will see a notification alerting you to that. No further action is needed on your part. 
• If a reported message was not a simulation, and you are concerned about a time-sensitive request, you must take additional steps to verify the email is valid before acting on it. 

Tips to Remember (at Work and at Home)

• Go beyond surface clues. Correct spelling and grammar, as well as familiar logos, branding, and names, are not automatic indicators that an email or website is safe. 
• Remain alert to phishing indicators. Mismatches between sending addresses and an organization’s name are always warning signs. AI-enabled tools enhance the quality of lures so stay alert for less obvious signs of malicious intent, including messages tailored to specific regions and languages.
• Verify the legitimacy of any unsolicited/unexpected email before you interact with it, especially if it directs you to click on a link or asks you to download software. It can be tempting to click on a “call to action”. Remember to only download mandatory updates from a trusted internal source.