https://community.isc2.org/t5/Threats/Any-other-ISC-2-members-get-this-possible-phishing-attempt/m-p/66366#M1031 <P>Received the below email today (sanitized). No plaintext equivalent, From header domain isn't (ISC)2, mismatch between From and Reply to domains. Physical address listed at bottom is not (ISC)2.</P><P>&nbsp;</P><P>Also, It's been months since I last had to contact with (ISC)2 customer service. However, the To name and email are something I use specifically for (ISC)2.</P><P>&nbsp;</P><P>Leaving me to conclude one of three possibilities: A) someone has gotten at the (ISC)2 directory and is now phishing us, or B) Just for fun, (ISC)2 is conducting a phishing simulation, or C) It was a legit but flawed attempt.</P><P>&nbsp;</P><P><FONT color="#000000">From: "ISC2 Customer Service Team" &lt;invitations@wwxvfzzn.getfeedback-cx.com&gt;</FONT><BR /><FONT color="#000000">To: "xxxxx" &lt;xxxx@xxxxxxx&gt;</FONT><BR /><FONT color="#000000">Subject: ISC2 Customer Service Survey</FONT><BR /><FONT color="#000000">Date: Fri, 19 Jan 2024 12:02:42 +0000</FONT><BR /><FONT color="#000000">Reply-To: Natasha Karelina &lt;nkarelina@isc2.org&gt;</FONT></P><P>&nbsp;</P><P><FONT color="#000000">ISC2 Customer Service Survey</FONT></P><P><FONT color="#000000">Thank you for contacting ISC2 Customer Service. Please take this short survey to let us know how we did while helping you. Start Survey [link to non-ISC2 domain]</FONT><BR /><FONT color="#000000">Please respond within 7 days.</FONT></P><P>&nbsp;</P><P><FONT color="#000000">One Curiosity Way, San Mateo, CA, 94403</FONT><BR /><BR /></P><P>&nbsp;</P> Fri, 19 Jan 2024 15:10:09 GMT JoePete 2024-01-19T15:10:09Z https://community.isc2.org/t5/Threats/Any-other-ISC-2-members-get-this-possible-phishing-attempt/m-p/66366#M1031 <P>Received the below email today (sanitized). No plaintext equivalent, From header domain isn't (ISC)2, mismatch between From and Reply to domains. Physical address listed at bottom is not (ISC)2.</P><P>&nbsp;</P><P>Also, It's been months since I last had to contact with (ISC)2 customer service. However, the To name and email are something I use specifically for (ISC)2.</P><P>&nbsp;</P><P>Leaving me to conclude one of three possibilities: A) someone has gotten at the (ISC)2 directory and is now phishing us, or B) Just for fun, (ISC)2 is conducting a phishing simulation, or C) It was a legit but flawed attempt.</P><P>&nbsp;</P><P><FONT color="#000000">From: "ISC2 Customer Service Team" &lt;invitations@wwxvfzzn.getfeedback-cx.com&gt;</FONT><BR /><FONT color="#000000">To: "xxxxx" &lt;xxxx@xxxxxxx&gt;</FONT><BR /><FONT color="#000000">Subject: ISC2 Customer Service Survey</FONT><BR /><FONT color="#000000">Date: Fri, 19 Jan 2024 12:02:42 +0000</FONT><BR /><FONT color="#000000">Reply-To: Natasha Karelina &lt;nkarelina@isc2.org&gt;</FONT></P><P>&nbsp;</P><P><FONT color="#000000">ISC2 Customer Service Survey</FONT></P><P><FONT color="#000000">Thank you for contacting ISC2 Customer Service. Please take this short survey to let us know how we did while helping you. Start Survey [link to non-ISC2 domain]</FONT><BR /><FONT color="#000000">Please respond within 7 days.</FONT></P><P>&nbsp;</P><P><FONT color="#000000">One Curiosity Way, San Mateo, CA, 94403</FONT><BR /><BR /></P><P>&nbsp;</P> Fri, 19 Jan 2024 15:10:09 GMT https://community.isc2.org/t5/Threats/Any-other-ISC-2-members-get-this-possible-phishing-attempt/m-p/66366#M1031 JoePete 2024-01-19T15:10:09Z https://community.isc2.org/t5/Threats/Any-other-ISC-2-members-get-this-possible-phishing-attempt/m-p/66381#M1032 <P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/1005241419">@JoePete</a>Nothing seen so far, but I will keep an eye open for it.</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Sat, 20 Jan 2024 00:36:29 GMT https://community.isc2.org/t5/Threats/Any-other-ISC-2-members-get-this-possible-phishing-attempt/m-p/66381#M1032 Caute_cautim 2024-01-20T00:36:29Z