On this page you will find actual phishing emails received by NISD staff and students. Having access to this information allows NISD staff and students to better recognize suspicious emails and help educate NISD email users on how to spot a phish. If you receive a suspicious email not listed here, please report it using the instructions at the bottom of the page. For more tips on phishing and other cybersecurity practices, visit our Be Cybersmart page.

Real Phishing Attempts in NISD

Click the links below to explore images and details from actual phishing attacks.

Nov
13

This phishing attempt asks you to open a document protected by a captcha page to create a false sense of security.

Oct
12

This spear phishing attempt creates a sense of urgency with its title and attempts to get the recipient's phone number to begin a smishing attack.

Sept 18

This sophisticated spear phishing scam used a compromised account from a trusted source to direct high-profile targets to a custom landing page built to look identical to our NISD login page.

Sept 12

Using a comprised account from a reputable source, this attacker used the name of an actual NISD staff member to share a file in an attempt to get users to type in their credentials with a fake MFA prompt.

Aug
22

External email account invited staff members to open/edit a shared document.

June 13

This is a general notice that your account will be deactivated in 24 hours time if not UPDATED. In order to update it, Kindly follow this process

How to report phishing in NISD: