{"id":1496,"date":"2020-09-10T16:33:58","date_gmt":"2020-09-10T23:33:58","guid":{"rendered":"https:\/\/blogschapman.wpenginepowered.com\/information-systems\/2020\/09\/10\/outlook-quarantine-phishing-scam\/"},"modified":"2026-03-26T18:12:04","modified_gmt":"2026-03-26T18:12:04","slug":"outlook-quarantine-phishing-scam","status":"publish","type":"post","link":"https:\/\/blogs.chapman.edu\/information-systems\/2020\/09\/10\/outlook-quarantine-phishing-scam\/","title":{"rendered":"Outlook QUARANTINE Phishing Scam"},"content":{"rendered":"<p>Our Department of Information Security would like to make you aware of an emerging phishing scam targeting institution&#8217;s Outlook quarantine policy. Cyber attackers are using legitimate email quarantine messages to lure users into unknowingly giving up their username and password.<\/p>\n<p><strong>Here is how the phishing scam works:<\/strong><\/p>\n<ol>\n<li>The attackers impersonates technical support sending fake email quarantine alerts:\n<ul>\n<li>Users will receive an \u201curgent\u201d email from the attackers with the following:\n<ol>\n<li>From: &#8220;<strong>Support<\/strong>&#8220;<\/li>\n<li>Subject Line: &#8220;<strong>Action Required<\/strong>&#8220;<\/li>\n<li>Email Body: &#8220;Two emails have been quarantined and will be deleted in 3 days if no action is taken.&#8221;<\/li>\n<\/ol>\n<\/li>\n<\/ul>\n<\/li>\n<li>Then the attackers embed a link that loads the legitimate business page and applies a fake login box on top of it.<\/li>\n<li>Users will also see a message saying their session has &#8220;timed out&#8221; and that they need to log back in.<\/li>\n<li>The user then enters their login credentials (username and password) on the fake login field.<\/li>\n<li>Attackers now have the user&#8217;s login information and can access their account information.<\/li>\n<\/ol>\n<p><strong>What can we do to prevent being scammed?<\/strong><\/p>\n<ol>\n<li>Chapman University no longer quarantines suspicious emails. The means that you will not receive quarantine emails from IS&amp;T. If you do, immediately report it to <strong><a href=\"mailto:abuse@chapman.edu\">abuse@chapman.edu<\/a><\/strong>.<\/li>\n<li>If you are unsure about the legitimacy of an email, please check the Chapman information security page for status of the latest phish emails at <a href=\"http:\/\/www.chapman.edu\/scams\">chapman.edu\/scams<\/a>; If you do not see your email posted on the page then please report the email to <a href=\"mailto:abuse@chapman.edu\">abuse@chapman.edu<\/a><\/li>\n<li>Register for <a href=\"https:\/\/www.chapman.edu\/campus-services\/information-systems\/security\/2-factor-authentication.aspx\">Two-Factor Authentication (2FA)<\/a>. 2FA adds an extra layer of protection that requires users to authenticate their login information via the Microsoft Authentication App or a 6-digit code received via text or phone call. In the event your username and password are compromised, this extra step will block unauthorized users from accessing your account.<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"<p>Cyber attackers depoly new Email Quarantine Alert tactic to lure victims.<\/p>\n","protected":false},"author":1479,"featured_media":4151,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"default","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[35,23,26],"tags":[],"class_list":["post-1496","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-information-security","category-ist","category-technology"],"_links":{"self":[{"href":"https:\/\/blogs.chapman.edu\/information-systems\/wp-json\/wp\/v2\/posts\/1496","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.chapman.edu\/information-systems\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.chapman.edu\/information-systems\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.chapman.edu\/information-systems\/wp-json\/wp\/v2\/users\/1479"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.chapman.edu\/information-systems\/wp-json\/wp\/v2\/comments?post=1496"}],"version-history":[{"count":0,"href":"https:\/\/blogs.chapman.edu\/information-systems\/wp-json\/wp\/v2\/posts\/1496\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blogs.chapman.edu\/information-systems\/wp-json\/wp\/v2\/media\/4151"}],"wp:attachment":[{"href":"https:\/\/blogs.chapman.edu\/information-systems\/wp-json\/wp\/v2\/media?parent=1496"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.chapman.edu\/information-systems\/wp-json\/wp\/v2\/categories?post=1496"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.chapman.edu\/information-systems\/wp-json\/wp\/v2\/tags?post=1496"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}