Need to know
For #TeamEEAST Last updated: 18 May 2024 at 11:00
Please be aware of the below email that has been sent to several members of staff. It has been identified as a credential scraping phishing email (tricks the recipients into providing usernames and passwords).
The message appears to come from “EastambServiceDesk” in the sender details but is actually from an external compromised account.
It is usually sent with high importance and includes a personalised subject line, “Action Required – Confirm – firstname.surname@eastamb.nhs.uk usage : Date”
The content of the email claims be a message from Microsoft encouraging you to keep your current password to avoid login disruption (safe screenshot below).
If you have clicked on the link within this email, please inform the Information Governance and IT Service Desk teams immediately.
Please remember to check emails carefully and pay close attention to the Egress Defend banners that appear in the top left-hand-side of external emails. Clicking on these banners will provide you with more information about the email (see summary details below) and help to keep both you and the Trust safe. You can also use this feature to report the email as a phish and help to improve our defences.
Kind regards,
Information Governance team
Published 14th July 2023