Phish-Free Paypal Phishing
Fortinet News, Monday, January 6th, 2025
As a CISO, I am always on high alert for phishing attempts, and this recent example immediately set off alarm bells.
Most obviously, why am I even receiving this request? I don't use my corporate email address in PayPal. Additionally, the To: address, 'Billingdepartments1'@'gkjyryfjy876.onmicrosoft.com,' is not mine.
Usually, this would result in a 'report and move on' action from me, but I was a little intrigued. Whenever I see a phishing email, I always think, WWMMD (what would my Mum do?). How would I have responded based on all the methods I have told her to look for?