I got another good one… a fake Dropbox email this time. And these guys are stepping up their game a little bit, too.
From: Dropbox
Subject: New files received.
Content:
You just received new files to your Dropbox
You just received new files from one of your members on Dropbox, login to view your new added files.
Let’s Pick it Apart
The “From:” field is actually allison@drkahner.com, which is not Dropbox. Dropbox would not send an email from that address. The drkahner.com website looks like it might be legit but it’s possible she was hacked.
There’s not a lot of bad English on this one since there isn’t a lot of text.
But who are my members?
I have members?
Here’s the link:
https://gormanusa-my.sharepoint.com/:x:/r/personal/tspencer_gormanusa_com/_layouts/15/WopiFrame.aspx?guestaccesstoken=wgfwCMMsSvDSoFA7lJViwaJ85TlECLUG2XBVOQWLmP0%3d&docid=1_12424441d8c29412bb868684e5cb74e47&wdFormId=%7B992E319A%2DBE72%2D460B%2DB6B4%2D2D3FCF789FC5%7D&action=formsubmit
When I click on it, I get a phishing warning because of the protection I’ve put on my system:
I’m glad I have that.
The email was sent from Tacoma, WA:
Yup… not a lot to go on here. I’m glad I have that phishing email protection in place. I think this one might catch a few people napping.
