Linktree is a landing page service where businesses and individuals can list multiple links from a single page. This service is often used on social media to share and access various webpages easily. However, cybercriminals can also use Linktree to host malicious links to try to steal your personal information.

In a recent scam, the recipient receives notification that someone they know has shared a file with them but is actually a cybercriminal in disguise. This notification prompts them to open the file through a link. If they click the link, they are redirected to a legitimate Linktree page containing a fake Microsoft 365 link. This link will take them to a login page that prompts them to enter their Microsoft credentials. Once they share their information, cybercriminals can use it for malicious purposes. Although this most recent scam involves Linktree, it’s typical of other attacks that can fool you.

Follow the tips below to stay safe from similar scams:

• Never click a link or download an attachment in an email you weren’t expecting.
• Be cautious before you enter your online credentials. Verify that the login page is safe and legitimate.
• Make sure that the sender is who they say they are. If the sender claims to be someone you know, check by calling or visiting the known person.

If you have any questions about the topics covered in this week’s OIT Weekly,

contact the OIT HelpDesk online or at 865-974-9900.