Phishing Emails and Unexpected DUO MFA prompts

Phishing emails are still hitting inboxes every day — but today’s cyber threats go far beyond the old tricks. Attackers are using increasingly sophisticated methods, from realistic fake login pages to deepfake audio and AI-powered scams, to bypass traditional defenses and target employees directly. Staying safe requires all of us to stay informed.

Below are a couple of tactics to watch out for in your day-to-day work.  

If You Receive a Suspicious or Phishing Email:

• Check the bottom of the message. If it’s from outside the company, you’ll see a red banner that says the message originated from an external source. That’s your first clue to slow down and review it carefully.
• Don’t click on any links or open attachments. Even if the sender looks familiar, phishing attempts often mimic trusted contacts.
• Don’t reply. Responding can confirm your address to an attacker.
• Report it. Forward the email to mis@mileone.com so our team can investigate and take action.

Delete the message after you’ve reported it. If you're unsure or need help evaluating an email, call ext. 10599 — our Helpdesk is ready to support you.

If You Receive an Unexpected DUO Code or Push Notification:

• Do not approve it. If you didn’t just try to log in, someone else may be attempting to access your account.
• Report it right away to mis@mileone.com or call 10599.
• Change your password immediately. You can do this quickly by pressing Ctrl + Alt + Delete on your computer and selecting "Change a password".

Remember: DUO prompts are only sent when a login attempt is made. If you weren’t logging in, treat the notification as a serious warning sign.