Information Security has identified a multi-factor authentication phishing scam being sent to WPI.edu email addresses. The email attempts to lure you into scanning a QR code purportedly from Microsoft. If you received this message, DO NOT reply or scan the QR code.
Please note that WPI IT will not email you about your password or multi-factor authentication expiring without prior notification.
Please visit the Hub news article for more details about this phishing scam.
Phishing help at WPI:
You can check Information Security’s Phish Bowl for notices and examples of recent phishing schemes known to have been received at WPI. You are encouraged to report anything suspicious to phishing@wpi.edu.
Additional Resources to Stay Safe Online:
- Information Security's Hub page
- SECURE IT - October 2023 features Professor Craig Shue's article on multi-factor authentication
- Fierce Education's article, Top 5 Cybersecurity Threats Facing Higher Education, explains why cybercriminals target higher education institutions.