Why this looks valid

• The email appears to be from the Marist College Help Desk
• The message may be addressed directly to the recipient
• The message contains small details to make it look more valid, such as Microsoft logos, valid links to Microsoft policies, and a confidentiality notice

Why this is phishing

• The QR code does not go to a Marist website or a college service
• All Marist email accounts already require multi-factor authentication
• Awkward sentence construction and typos are good indicators of malicious email

Additional notes

• This is an extremely dangerous phishing attempt. If you used the QR code and filled in your credentials, please contact the Help Desk immediately at x4357 (HELP) or helpdesk@marist.edu.
• Report this message to Microsoft. In Outlook on the Web, click the Junk menu, and select Phishing.
• A little paranoia goes a long way! Be suspicious of any email messages similar to this one.