Phishing Content: Dropbox-spoofed notification with embedded "Click Here" button. The Click Here link is infected and results in credentials being stolen.


By 9 am twenty-nine community members had fallen victim. The secondary wave of the attack resulted in 31 more victims. Blocks have been put in place for on-campus users. Off-campus users are still vulnerable and need to remain diligent. One way to protect WPI credentials is to ensure that different passwords are used for disparate systems. Another safety measure is not to click on any links in unsolicited emails.

Action Needed

Do not click on links in unsolicited emails