This phishing attempt is mostly quarantined by our automatic filters. However:
A) Some users request its release.
B) Similar scams could appear, using the idea that you’ve been added to a group, granted permissions, or need to open Microsoft Teams.
Unlike typical phishing emails, this one lacks urgency—it doesn’t claim anything is broken, expiring, or at risk. Instead, it relies purely on curiosity to lure victims into clicking.
How to Identify It as Phishing:
The most reliable way is by hovering over the link. If it directs you to a site that does not belong to Microsoft (Teams) or UVic, it’s likely malicious. Usually, these are newly registered domains, but sometimes, they are hacked websites storing malicious content in subfolders. The group name or purpose may vary—it could mention SharePoint, OneDrive, Zoom, Office, or something else. No matter what service it claims to be related to, the key detail remains: if the link points to an unknown site, do not click.
Instead, report the message using the Phish button in Outlook to help prevent further phishing attempts.
Microsoft Teams
You’ve been added to the “UVic contracts” work group in Microsoft Teams.
<Open Microsoft Teams>