Recently there have been incidents of hoax e-mails fraudulently using the AIHA President Kathy Murphy’s name, as shown in the image below, and AIHA is warning its members and partners to be aware.
These emails use Kathy Murphy’s name and signature to ask AIHA members about gift card donations to Veterans at Hospice Care. While AIHA and its Board of Directors send emails advising members and partners about its products and services, as well as encouraging donations to the American Industrial Hygiene Foundation, they DO NOT solicit donations for third parties.
The phishing email in question shows ‘Kathleen S. Murphy, CIH’ as the sender and has firstname.lastname@example.org as the sender's address.
Please note that AIHA official domain emails are as listed below:
If you receive a suspicious email, do NOT click on any links or provide any information.
These are some types of scamming that an email could contain.
Scams: Intentional deceptions made for gain, or to cause damage through email. For example: “You are a winner of our $1,000,000 lottery fund! Click here to claim your reward.”
Spam: Also known as junk email, designed to trick you into thinking their message is worth reading. For example: "Great value health store!"
Hoax: Warnings about a non-existent threat, or an offer that sounds good to be true. For example: "Your AIHA account will be deactivated in 24 hours unless you confirm your email address and password."
Phishing: Pronounced ‘fishing.’ Phishing emails try to entice you into disclosing personal information, such as your username, password or bank account details. For example: "You have been given an AIHA membership refund. To help us process your payment, please click here to enter your name, address, phone number, and bank details."
Spoofing: When the sender address of an email has been altered to hide its true origin, it's being used by virus and spam authors to make their messages look legitimate and lure people into clicking on links or downloading attachments. For example: The email looks as it is from one address but hovering over it reveals a different address.
How to protect yourself and your team
- Look at the sender’s email address – These email addresses can be spoofed to look like someone you know, but also, they could be one that has a different country’s domain on it (example: @aiha.org.com or @aiha.org.ru).
- Look at the Subject line – Does it create a sense of urgency? These are typically viruses. Does it have 1 word in it but appears to be a response like “Re: Document”? – This is also a tall tell sign of a virus.
- Look at the body of the message – If the sender is a recognized sender, does it follow their normal emailing criteria – Does it have a salutation – is it directed to you specifically, or is it generic (Hi, vs Hi Jane,). Does it have a signature for the person who sent it? Does it match the name of the person you identified in the email address above? Does it have the company’s contact information and/or graphics that you’ve been accustomed to seeing if you’ve received mail from them before?
- Look at the content of the body – Is it just asking you to open a file or go to a website link? Does it have ‘syntax’ gone wrong.
- Look at the direction of the message – Does it ask you to open the attached file? Does it create a sense of urgency? With viruses, the purpose of the body is to entice you to open the attachment. A common method is by fear and urgency.
- Look at the attachment – is it a zip file? Is it a PDF? Is it a docx or doc? – how big is it? If it’s really small, around 1kb to 22kb, it is most likely a virus – couple this information with the above identifying marks above and you will have a very good indication that it’s a virus.
When deleting viruses, please use SHIFT DELETE (which will permanently delete the email), and not just delete (which will just move it to your Deleted Items folder).