We received reports this morning regarding a phish claiming to be an employee evaluation. The email came from a .edu domain but not a TCNJ address, and hovering over the link shows an unusual URL that would not typically be used to share files at TCNJ. Please always look for these signs before interacting with any emails claiming to be HR related materials. See screenshots below.
If you followed the link, a generic login page appears. Entering credentials then prompts you to enter a verification code. Doing so will claim the file will be emailed to you shortly. This attack harvests your credentials and a passcode enabled the attacker to login to TCNJ services as you. Please be vigilant when reviewing emails and do not enter credentials into any page you are unsure of. Forward suspicious emails to us at phish@tcnj.edu. Thank you.
