Oops! This was a test we were hoping you would pass.
Here are the clues you should have spotted:
1) Sender address
The sender address in this email was:
teams-notifications-no-reply@data-speed-cdn.net
A Teams message should originate from the Microsoft.com domain.
2) Link target URL
The link target URL in this message was:
https://aeneid.clickarmor.ca/?rid=A1LdBax
A Teams button should link to a Microsoft.com domain.
Tip: You can check for past Teams notifications to see what the real sender and links would look like.
Remember to use the phishing tips and practice scenarios from Click Armor’s online course to improve your skills, and avoid the next real attack or internal test.
Always check for suspicious elements:
-
-
-
-
Senders
-
Links
-
Attachments
-
Body content
-
-
-