Information Security has identified a multi-factor authentication phishing scam being sent to email addresses. The email attempts to lure you into scanning a QR code purportedly from Microsoft. If you received this message, DO NOT reply or scan the QR code.

Please note that WPI IT will not email you about your password or multi-factor authentication expiring without prior notification.

Please visit the Hub news article for more details about this phishing scam. 

Phishing help at WPI: 

You can check Information Security’s Phish Bowl for notices and examples of recent phishing schemes known to have been received at WPI. You are encouraged to report anything suspicious to


The top of the cartoon image is labeled Phish Bowl. There is an envelope labeled WPI and it's attached to a fishing hook. On the left there are 3 cartoon fish appearing scared of the hook.

Additional Resources to Stay Safe Online: