麻豆传媒在线

Phish Files
Abstract Aliens On Flying Saucers Northern Lights Lighthouse Mountains Water Tree Sun Background Gradient Unidentified Flying Object Ufo Stars Vector Design Style Landscape
Phish Files Articles
March 26, 2026

Your Performance Self-Evaluation Is Available for Your Review

Posted in: Phishing

The image shows a phishing warning on an email that appears to be from 麻豆传媒在线's HR Team, prompting the recipient to complete a performance evaluation form.

The image shows a "Let's prove you're human" captcha screen with a "Press and hold" button, styled with an animated character.

The image shows a Google Sign-In page opened in a Firefox browser, prompting the user to enter their email or phone number.

Why This Looks Real

This phishing email is especially convincing because it mimics real HR processes:

  • Relevant timing
    Mentions of evaluation deadlines (like March 26th) align with real performance review cycles.
  • Familiar system references
    The message references evaluation steps that resemble workflows in Workday.
  • Personalization
    Includes your name to make the email feel legitimate.
  • Professional tone
    Uses structured language like 鈥淪ubmitted to Reviewer鈥 and 鈥淪ubmitted for Approval.鈥
  • HR-style formatting
    Appears to come from an 鈥淗R Admin鈥 with an official-looking notification format.

Why This Is Fake

Despite looking legitimate, there are clear warning signs:

  • External sender
    The email comes from outside the university, even though HR communications should come from internal systems.
  • Generic sender name
    鈥淗R Admin鈥 is vague and not tied to a real university contact.
  • Malicious link behavior
    The 鈥淰iew Review鈥 link leads to:
    • A fake CAPTCHA page
    • Followed by a spoofed login page designed to steal your credentials
  • Unexpected request
    Legitimate performance reviews are accessed directly through Workday鈥攏ot through email links.
  • No direct link to official system
    The URL does not match your institution鈥檚 Workday domain.

What You Should Do

If you receive this message:

If you already clicked or entered your information:

  • Change your password immediately
  • Report it via the PAB
  • Monitor your account for unusual activity

Additional Notes:

  • Remember:聽Information Technology will never text you. We will also never request your password or Duo codes,聽ever.
  • Information Technology will聽not聽ask you to verify accounts or submit passwords through unofficial forms or unexpected email links.
  • Do you think you鈥檝e fallen for a scam? Did you share personal information? Downloaded malicious content? Please contact the IT Service Desk at聽973-655-7971聽option 1 or email聽itservicedesk@montclair.edu.
  • Use the聽Knowbe4 Phish Alert Button (PAB)聽to report malicious emails directly to the Information Security team for review. If you are not using the Gmail client please forward the email to聽phishfiles@montclair.edu.
  • Always use the 鈥渉over over鈥 technique to check web links before clicking! For more security tips please visit our聽Security Tips听辫补驳别.