I had a user forward me an email he had received from Tech Data. This email was indistinguishable from a KnowBe4 simulated phish!
Below is the meat of the message:
(there were some embedded images above this that aren’t important here that showed some spoof messages)
Sure, everything looks on the up and up - it’s good advice in the text… but the links!
The only reason I knew it wasn’t a KnowBe4 simulation was because I just finished my preliminary baseline campaign and this user had already forwarded me the KnowBe4 simulated threat!
There was only one link in the whole email that didn’t go to http://mkto-k0087.com/, that was the one to open it in a web browser. To save you the trouble, that domain belongs to MarkMonitor.com, which is a marketing company apparently.
So I ask - ye who have already deployed this and have users forwarding you emails they suspect to be Phish… what do you use to determine if it’s real or not?