Domain Name: outlook.com
Registry Domain ID: 2019401_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.markmonitor.com
Registrar URL: http://www.markmonitor.com
Updated Date: 2022-07-16T09:37:55+0000
Creation Date: 1994-08-18T04:00:00+0000
Registrar Registration Expiration Date: 2023-08-17T00:00:00+0000
Registrar: MarkMonitor, Inc.
Registrar IANA ID: 292
Registrar Abuse Contact Email: abusecomplaints@markmonitor.com
Registrar Abuse Contact Phone: +1.2083895770
Domain Status: clientUpdateProhibited (https://www.icann.org/epp#clientUpdateProhibited)
Domain Status: clientTransferProhibited (https://www.icann.org/epp#clientTransferProhibited)
Domain Status: clientDeleteProhibited (https://www.icann.org/epp#clientDeleteProhibited)
Domain Status: serverUpdateProhibited (https://www.icann.org/epp#serverUpdateProhibited)
Domain Status: serverTransferProhibited (https://www.icann.org/epp#serverTransferProhibited)
Domain Status: serverDeleteProhibited (https://www.icann.org/epp#serverDeleteProhibited)
Registry Registrant ID: 
Registrant Name: Domain Administrator
Registrant Organization: Microsoft Corporation
Registrant Street: One Microsoft Way, 
Registrant City: Redmond
Registrant State/Province: WA
Registrant Postal Code: 98052
Registrant Country: US
Registrant Phone: +1.4258828080
Registrant Phone Ext: 
Registrant Fax: +1.4259367329
Registrant Fax Ext: 
Registrant Email: domains@microsoft.com
Registry Admin ID: 
Admin Name: Domain Administrator
Admin Organization: Microsoft Corporation
Admin Street: One Microsoft Way, 
Admin City: Redmond
Admin State/Province: WA
Admin Postal Code: 98052
Admin Country: US
Admin Phone: +1.4258828080
Admin Phone Ext: 
Admin Fax: +1.4259367329
Admin Fax Ext: 
Admin Email: domains@microsoft.com
Registry Tech ID: 
Tech Name: MSN Hostmaster
Tech Organization: Microsoft Corporation
Tech Street: One Microsoft Way, 
Tech City: Redmond
Tech State/Province: WA
Tech Postal Code: 98052
Tech Country: US
Tech Phone: +1.4258828080
Tech Phone Ext: 
Tech Fax: +1.4259367329
Tech Fax Ext: 
Tech Email: msnhst@microsoft.com
Name Server: ns3-38.azure-dns.org
Name Server: nse21.o365filtering.com
Name Server: nse13.o365filtering.com
Name Server: ns4-38.azure-dns.info
Name Server: nse24.o365filtering.com
Name Server: ns2-38.azure-dns.net
Name Server: nse12.o365filtering.com
Name Server: ns1-38.azure-dns.com
DNSSEC: unsigned
URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
>>> Last update of WHOIS database: 2022-11-09T14:43:19+0000 <<<

For more information on WHOIS status codes, please visit:
  https://www.icann.org/resources/pages/epp-status-codes

If you wish to contact this domain’s Registrant, Administrative, or Technical
contact, and such email address is not visible above, you may do so via our web
form, pursuant to ICANN’s Temporary Specification. To verify that you are not a
robot, please enter your email address to receive a link to a page that
facilitates email communication with the relevant contact(s).

Web-based WHOIS:
  https://domains.markmonitor.com/whois

If you have a legitimate interest in viewing the non-public WHOIS details, send
your request and the reasons for your request to whoisrequest@markmonitor.com
and specify the domain name in the subject line. We will review that request and
may ask for supporting documentation and explanation.

The data in MarkMonitor’s WHOIS database is provided for information purposes,
and to assist persons in obtaining information about or related to a domain
name’s registration record. While MarkMonitor believes the data to be accurate,
the data is provided "as is" with no guarantee or warranties regarding its
accuracy.

By submitting a WHOIS query, you agree that you will use this data only for
lawful purposes and that, under no circumstances will you use this data to:
  (1) allow, enable, or otherwise support the transmission by email, telephone,
or facsimile of mass, unsolicited, commercial advertising, or spam; or
  (2) enable high volume, automated, or electronic processes that send queries,
data, or email to MarkMonitor (or its systems) or the domain name contacts (or
its systems).

MarkMonitor reserves the right to modify these terms at any time.

By submitting this query, you agree to abide by this policy.

MarkMonitor Domain Management(TM)
Protecting companies and consumers in a digital world.

Visit MarkMonitor at https://www.markmonitor.com
Contact us at +1.8007459229
In Europe, at +44.02032062220
----

                             

• POST

  200 OK

  https://stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-126808791-4&cid=363623940.1668005426&jid=582987811&gjid=188047485&_gid=24956300.1668005426&_u=YEBAAUAAAAAAACgCI~&z=1984427593

• https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fs.e-docssign.net%2F107519%2F2ece10%2F43e257f0-efb7-4f1e-8858-8a3c50330c5a%2F%3F&data=05%7C01%7Ckschulze%40wwf.nl%7Cf43cc59f65364c62ece808dac25f4394%7C08fd3b8230a846bc87c759d8a5bbda6e%7C0%7C0%7C638036011668172206%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=s19voQnDeBk6Zj3XmKV%2BvnSxQkAl2W44Bv3hOQEtJvA%3D&reserved=0 https://s.e-docssign.net/107519/2ece10/43e257f0-efb7-4f1e-8858-8a3c50330c5a/?

<html dir="ltr" lang="en"><head>        <script type="text/javascript" async="" src="https://www.google-analytics.com/analytics.js"></script><script async="" src="https://www.googletagmanager.com/gtag/js?id=UA-126808791-4"></script>
        <script>
          window.dataLayer = window.dataLayer || [];
          function gtag(){dataLayer.push(arguments);}
          gtag('js', new Date());

          gtag('config', "UA-126808791-4", {
            'anonymize_ip': true,
            'page_title': 'PhishMe',
            'page_location': document.location.href.replace(document.location.search, '')
          });
        </script>

<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1">
  <title>That Link Could Have Been Malicious</title>
<script src="/javascripts/jquery-latest.min.js"></script><!--[if lte IE 8]><script src="/javascripts/jquery-1.12.4.min.js"></script><![endif]-->
  <link href="/system/content_files/uploads/2a6/34f/ea-/original/bootstrap-3.css" rel="stylesheet">
  <link href="/system/content_files/uploads/57e/649/f0-/original/static-education-styles.css" rel="stylesheet">
  <link href="/system/content_files/uploads/de8/1c5/91-/original/static-education-language-selector.css" rel="stylesheet">
  <link href="/system/content_files/uploads/3dc/699/50-/original/open-sans-webfont.css" rel="stylesheet">
<!-- HTML5 Shim and template specific styles for IE8 support --><!--[if lt IE 9]>
      <link rel="stylesheet" href="/system/content_files/uploads/4e5/f1f/75-/original/static-education-styles-ie8.css">
      <script src="/system/content_files/uploads/b52/f72/93-/original/html5shiv.js"></script>

    <![endif]-->
  <style type="text/css">/*======================================
            COMMON CUSTOMIZATION OPTIONS
            ======================================*/

                /* Colors: Background/Font */
                
                /* Body */
                body {
                    font-family: 'Open Sans', sans-serif; /* Body Font */
                    background: #FCFCFC; /* Body Background */
                    color: #434a54; /* Font Color */
                }
                
                /* Language Selector Icon Background Colour */
                #language-selector .btn:before {
                    background-color: #EE5E44;
                }
                
                /* Toggle display of language selector search field */
                #language-selector .language-selector-search {
                    display: block;
                }
                
                /* Alert Section */
                .alert-container {
                    background-color: #0F2538;
                    color: inherit;
                    border: none;
                }
                .alert-container h1:after {
                    background-color: #EE5E44; /* Alert heading line */
                }
                .alert-container .alert-accent {
                    color: #EE5E44;
                }
                .alert-icon {
                    background: #EE5E44;
                }
                
                /* Content Section */
                
                .interactive-url {
                    display: block;
                }
                
                /* Procedure Section */
                .procedure p {
                    color: #0F2538;
                }
                
                /* Learn More Section */
                .learn-more .learn-more-btn {
                    background-color: #EE5E44;
                    color: inherit;
                }
                .learn-more {
                    background: #EDEDED;
                    color: inherit;
                }

                /* To hide or display the below components, change to 'display: none;' or 'display: block*/
                #language-selector {
                    display: none;
                }
                .navbar-brand img.logo {
                    display: none;
                }
                .procedure {
                    display: block;
                }
                .learn-more {
                    display: block;
                }
                footer {
                    display: none;
                }
  </style>
  <script src="/javascripts/jquery.periodicalupdater.js" type="text/javascript"></script>

  <script type="text/javascript">
    var pollingIntervalInMilliseconds = 10000;

    $.PeriodicalUpdater('/log_info', { method: 'get', data: {tid:'43e257f0-efb7-4f1e-8858-8a3c50330c5a'}, minTimeout: pollingIntervalInMilliseconds, type: 'text', maxCalls: 30, autoStop: 0});
  </script>

</head>
<body>
<div id="skip"><a href="#main">Skip to Main Content</a></div>

<div class="container">
<header>
<nav class="navbar">
<div class="navbar-header">
<div class="navbar-brand"><img alt="Company Logo" class="logo img-responsive" src="/system/content_images/uploads/fe2/19b/c4-/original/logo-placeholder.png"></div>
</div>

<div id="language-selector" contenteditable="false">
<div class="dropdown pull-right">
<button aria-controls="languages" aria-expanded="false" aria-label="Language selector toggle navigation: English" class="btn btn-default dropdown-toggle" data-toggle="dropdown" id="languages-selector-button" type="button">English<span class="bilingualmenu">English</span></button>

<div aria-labelledby="languages-selector-button" class="dropdown-menu dropdown-menu-right" id="languages">
<input aria-label="Search" class="form-control language-selector-search" placeholder="Search Languages..." type="text">
<ul class="language-list">
  <li><a class="en_content active" data-target="en_content" href="#en_content" lang="en">English<span class="bilingualmenu">English</span></a></li>
</ul>

<div class="empty-search" tabindex="0">No results found</div>
</div>
</div>
</div>
</nav>
</header>

<main id="main">
<div class="langContainer activeLanguage" id="en_content" lang="en">
<section class="alert-container">
<div class="row">
<div class="col-sm-9">
<h1>This was an authorized phishing simulation</h1>

<p>If you ever suspect an email to be a phishing attack, or have any questions or feedback related to this exercise, please email servicedesk@wwf.nl.</p>
</div>

<div class="col-sm-3 icon">
<div class="alert-icon"><img alt="Alert" src="/system/content_images/uploads/d57/26a/8b-/original/icon.png"></div>
</div>
</div>
</section>

<section class="content">
<div class="row">
<div class="col-md-12">
<h2>That Link Could Have Been Malicious</h2>
<img alt="Visual URL Spoofing" class="pull-right side-img img-responsive img-rounded" src="/system/content_images/uploads/1d8/ec5/80-/original/spear_phishing_article_visual.png">
<p>This is not the first time you’ve engaged with a suspicious link or attachment. If this was an actual phishing email, you could have jeopardized our organization.</p>

<p>Phishing emails ask you to provide sensitive information, encourage you to click links, or urge you to download attachments. When suspicious emails make it through our defenses, we rely on <strong>YOU</strong> as our last line of defense. Therefore, it’s vitally important that you learn to properly identify and report suspicious emails as potential threats.</p>

<p>We recommend that you slow down and examine emails closely before taking action.</p>

<h3>Keep these tips in mind to identify phishing emails:</h3>

<ul>
  <li>
<strong>Keep your emotions in check.</strong> Phishers frequently leverage emotions like fear, greed, and curiosity. Look out for emotional triggers like surprising headlines referencing a current event, thank you emails, or unexpected bank notices.</li>
  <li>
<strong>Look for warning signs. </strong>Does anything in the email seem strange? Was the email sent by an unknown sender? Was it expected or unsolicited? Are there grammar or spelling errors? If you've answered “yes” to any of these questions, you may have received a phishing email.</li>
  <li>
<strong>Examine the domain name.</strong> Some attackers modify domains to catch targets off guard. For example, if the correct domain was www.example.com, the phishers may register “examp1e.com” or “example.co”, hoping you won’t notice the subtle difference.</li>
  <li>
<strong>Always verify the sender.</strong> Make sure you recognize the sender’s name and domain. If you recognize the sender, verify the message is legitimate with a quick phone call.</li>
</ul>
<!-- PROCEDURE --> <!--Change this text to reflect your organization's procedures for reporting suspicious emails. -->
</div>
</div>
</section>

<section class="procedure">
<div class="row">
<div class="col-md-12">
<p>If you suspect that you have received a spear phishing email at work, follow our procedures for reporting it immediately. Your active participation is crucial to help protect our organization.</p>
</div>
</div>
</section>

<section class="learn-more">
<div class="row">
<div class="col-md-12">
<button aria-controls="learn-more-content-en" aria-expanded="false" aria-label="learn more about Spear Phishing" class="btn btn-primary learn-more-btn" data-target="#learn-more-content-en" data-toggle="collapse" type="button" contenteditable="false"><span class="plus">&nbsp;</span></button>

<h3 class="learn-more-text">Learn More</h3>

<div class="collapse" id="learn-more-content-en">
<div class="well">
<h4>How to check where a link goes without clicking:</h4>

<ul>
  <li>
<strong>Desktop (Mac/Windows):</strong> Hover your cursor over the link to view the URL.</li>
  <li>
<strong>Mobile Devices (Android, iOS, Windows):</strong> Touch and hold the link until a pop-up menu appears.</li>
</ul>
If you’re having trouble viewing the destination of a link on a mobile device, it’s better to wait until you are at your desktop.

<p>It is important to examine hyperlinks in suspicious emails before clicking. Every hyperlink contains two parts: the anchor and the destination.</p>

<p>The <em>anchor</em> is the visible portion of the hyperlink that you click on. An anchor can be a URL, plain text, or even an image. An anchor can be misleading, because it doesn’t tell you where a link truly leads. The <em>destination</em> tells you where the link truly leads. <span class="ie8-display"> (interactive functionality may be limited in this browser)</span></p>
<!-- Reading a URL Interactive -->

<div class="interactive-url">
<h3>Reading a URL</h3>

<p>Select each component of the URL to learn more about it:</p>
<!-- URL tabs -->

<ul class="nav nav-tabs" role="tablist">
  <li class="active" role="presentation"><a aria-controls="protocal" data-toggle="tab" href="#protocal" role="tab" title="Protocal">https://</a></li>
  <li role="presentation"><a aria-controls="subdomain" data-toggle="tab" href="#subdomain" role="tab" title="Subdomain">www.</a></li>
  <li role="presentation"><a aria-controls="domain" data-toggle="tab" href="#domain" role="tab" title="Domain Name">example</a></li>
  <li role="presentation"><a aria-controls="extension" data-toggle="tab" href="#extension" role="tab" title="Extension">.com</a></li>
  <li role="presentation"><a aria-controls="file-path" data-toggle="tab" href="#file-path" role="tab" title="File Path">/downloads/index.html</a></li>
</ul>
<!-- URL Panes -->

<div class="tab-content">
<div class="tab-pane fade in active" id="protocal" role="tabpanel">
<strong>Protocol:</strong> Most frequently, HTTP and HTTPS. A web address with HTTPS is encrypted and is typically more secure. Never submit information to a web address that does not include HTTPS.</div>

<div class="tab-pane fade" id="subdomain" role="tabpanel">
<strong>Subdomain:</strong> A subsection of a site that appears before the domain. Phishers will include brand names in the subdomain to trick you, or they might chain together several subdomains so they resemble an entire web address.</div>

<div class="tab-pane fade" id="domain" role="tabpanel">
<strong>Domain Name:</strong> A permanent web address that is owned by an individual or company. Phishers might leverage a compromised domain or purchase a copycat domain of their own.</div>

<div class="tab-pane fade" id="extension" role="tabpanel">
<strong>Extension:</strong> Follows the domain name. The two parts together make a domain. The extension and the text immediately preceding it (e.g. examplecompany.com) tell you what web site you’re really going to.</div>

<div class="tab-pane fade" id="file-path" role="tabpanel">
<strong>File Path:</strong> Everything following the domain is a file path. The file path is made up of directories, subdirectories, and individual files. If the domain tells you what web site you’re visiting, the file path tells you the web page.</div>
</div>
</div>
</div>
</div>
</div>
</div>
</section>

<footer>
<div class="row">
<div class="col-md-12">
<p>©Cofense</p>
</div>
</div>
</footer>
</div>
</main>
</div>

<div aria-hidden="true" id="mainTitleInfo" style="display:none">
<div class="en_content" lang="en">That Link Could Have Been Malicious</div>
</div>
<script src="/system/content_files/uploads/5b8/ee7/1e-/original/jquery-latest.min.js"></script><!--[if lt IE 9]>
    <script src="/system/content_files/uploads/855/46e/b1-/original/jquery-1.12.4.min.js"></script>
    <![endif]--><script src="/system/content_files/uploads/0f7/f7c/90-/original/bootstrap-3.js"></script><script src="/system/content_files/uploads/1cc/f07/72-/original/static-education-l10n.js"></script><script src="/system/content_files/uploads/885/bfa/85-/original/static-education.js"></script><!--[if IE 8]>
    <script type="text/javascript">
        $( "#language-selector" ).addClass( "bar" );
        $( "#language-selector .dropdown" ).removeClass( "pull-right" );
        $( ".learn-more .collapse" ).removeClass( "in" );
    </script>
    <![endif]--><script>
        /* Update the value of customFallbackLanguage to the language you would like to setup as the new fallbackLanguage */ 
        
        var customFallbackLanguage = "en";
        setFallbackLanguage(customFallbackLanguage);

        /* Enable/Disable (by setting to 'true' or 'false' the value of broswerLanguageDetection) the detection of the browser language in order to try to find matching content in the eduation */
        
        var broswerLanguageDetection = true;
        togglebroswerLanguageDetection(broswerLanguageDetection);
        $('.interactive-url a').click(function(e) {
            e.preventDefault()
            $(this).tab('show')
        })

    </script>


</body></html>