Cornell |Re_Authenticationd Required| 17/Nov/2023
This phish typically originates from a non-Cornell email address. The sender may appear as "Cornell |Multi_auth_factor Subsystem®|Administration ". Do not scan the QR code nor reply to the sender. The QR code directs to a fake login page. If you entered your credentials into the page, change your NetID password at https://netid.cornell.edu.