A sophisticated phishing scam is making the rounds, and it's particularly dangerous because it appears to come from someone you know. THIS SCAM SEEMS SO REAL!

How Does the Scam Work?

Email from a Known Contact:

You receive an email from someone you recognize. The sender's display name and email address appear legitimate, even when you hover over their email address.

Link to a SharePoint File:

The email body includes a link claiming to be a SharePoint file (e.g., invoice, document, or report).

Redirect to Cloudflare "Security Check":

Clicking the SharePoint link in the email redirects you to a Cloudflare page that pretends to verify if you're "secure" before granting access.

Fake SharePoint Page:

Once "verified," you're directed to a SharePoint site, with what looks like a real document.

Credential Harvesting:

Once you click on the document they want you to open, the site asks you to "log in" using your email and password.....THIS IS WHERE YOUR CREDENTIALS ARE STOLEN.

⚠️ Important Red Flag: The URL of this fake SharePoint site does not match the sender's domain or any known address. This is a major warning sign.

🛑 What to Watch For:

1. Even if the email comes from someone you know, verify with them directly if it’s unexpected.

2. Always check the actual URL of any SharePoint or Microsoft login pages—look closely for slight variations or odd domain names.

3. Never enter your credentials into a site unless you’re 100% sure it’s legitimate.

   
   

✅ What to Do If You Suspect You Fell for It:

1. Immediately change your password for your Microsoft 365 (or affected) account.

2. Enable Multi-Factor Authentication (MFA) if it’s not already on.

3. Notify Kappa right away.

4. Run a virus/malware scan on your device.

🔚 Conclusion

Cybercriminals are constantly evolving their tactics, and this latest credential-grabbing scam is a reminder that even familiar-looking messages can be deceptive. Always verify unexpected document requests, inspect URLs closely, and never ever enter your login information unless you're absolutely sure the site is legitimate, and when you are sure, double-check again!

If you’re unsure about an email or think you may have clicked a suspicious link:

📞 Contact Kappa Computer Systems immediately. Our team can help assess the situation, secure your account, and ensure your systems remain protected.

Stay vigilant, stay secure — and when in doubt, ask us!

Visit www.kappaservices.com or call us at (407) 331-5921.