12
Got phished through a fake login page at work
Clicked a link in an email that looked exactly like our office 365 login. Typed in my credentials before I noticed the URL was off by one letter. IT locked my account within 2 minutes but the damage was done. Someone tried to forward all my emails to an external address. Now I check every URL twice and use a password manager that won't autofill on suspicious sites. Anyone else almost fall for something that looked that real?
3 comments
Log in to join the discussion
Log In3 Comments
william3201mo ago
Used to roll my eyes at the people who'd say "oh I'd never fall for a phishing scam" because I figured I was too careful for that. Then I got hit by one that cloned our HR portal perfectly. Same logo, same layout, same footer. Only thing that saved me was my boss walking by and going "hey did they change the password policy today?" because the form asked for my old password in a way the real site never did. Changed my whole attitude real quick. Now I treat every login link like it might be a trap.
5
nancy301mo ago
Used to think I was too sharp for that kind of trick, but one convincing fake page humbled me fast.
5
karenlee1mo ago
Respectfully, I gotta disagree with that take. Getting tricked by a phishing page says more about the scammers getting better than it does about you being too trusting. Those HR portal clones and fake login screens are scary good now, even the security guys at my department admit they're getting harder to spot. A healthy amount of paranoia about every link you click isn't a bad thing, but beating yourself up over falling for one is just giving the scammers more power. You probably caught it eventually, right? That's what matters.
5