---
title: "The Perfect Phishing Setup: A VPN Configuration from the IT Department | Phish Protection"
description: "The Perfect Phishing Setup: A VPN Configuration from the IT Department: Hackers are always trying different ways to get you to let your guard down. In that."
image: "https://phishprotection.com/og/blog/the-perfect-phishing-setup-a-vpn-configuration-from-the-it-department.png"
canonical: "https://phishprotection.com/blog/the-perfect-phishing-setup-a-vpn-configuration-from-the-it-department/"
---

Quick Answer

People working from home for the first time may not have a lot of experience doing that, but they quickly learn that they need a VPN (virtual private network) to \*\*securely communicate\*\* with the main office. So, if they receive an email from the company's IT department informing them that they need to update their VPN configuration, it is a perfectly logical email to receive. And that's exactly why it's being used to \*\*phish employees\*\* right now.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fthe-perfect-phishing-setup-a-vpn-configuration-from-the-it-department%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=The%20Perfect%20Phishing%20Setup%3A%20A%20VPN%20Configuration%20from%20the%20IT%20Department&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fthe-perfect-phishing-setup-a-vpn-configuration-from-the-it-department%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fthe-perfect-phishing-setup-a-vpn-configuration-from-the-it-department%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fthe-perfect-phishing-setup-a-vpn-configuration-from-the-it-department%2F&title=The%20Perfect%20Phishing%20Setup%3A%20A%20VPN%20Configuration%20from%20the%20IT%20Department "Share on Reddit") [ ](mailto:?subject=The%20Perfect%20Phishing%20Setup%3A%20A%20VPN%20Configuration%20from%20the%20IT%20Department&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fthe-perfect-phishing-setup-a-vpn-configuration-from-the-it-department%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2020/06/protection-from-phishing-7785.jpg) 

_Hackers are always trying different ways to get you to let your guard down._ In that endeavor, they try to leverage the current state of affairs to craft their **phishing attack**. For instance, today many people are working from home who normally wouldn’t be. Hackers use that information to launch their phishing attack, like the one supposedly delivering a new VPN configuration.

People working from home for the first time may not have a lot of experience doing that, but they quickly learn that they need a VPN (virtual private network) to **securely communicate** with the main office. So, if they receive an email from the company’s IT department informing them that they need to update their VPN configuration, it is a perfectly logical email to receive. And that’s exactly why it’s being used to **phish employees** right now.

According to [Help Net Security](https://www.helpnetsecurity.com/2020/06/04/office-365-users-beware-of-fake-company-emails-delivering-a-new-vpn-configuration/), “_Phishers are impersonating companies’ IT support team and sending fake VPN configuration change notifications in the hopes that remote employees may be tricked into providing their Office 365 login credentials_. The sender email address is **spoofed to impersonate** the domain of the targets’ respective organizations. The link provided in the email allegedly directs to a new VPN configuration for home access. Though the link appears to be related to the target’s company, _the hyperlink actually directs to an Office 365 credential **phishing website**_.”

_This is a particularly difficult phishing email to detect because the “phishing Office 365 login page is hosted on a Microsoft .NET platform, with a valid Microsoft certificate_.” In other words, only the most highly trained and suspicious workers will be able to detect this attack. And only one has to be fooled to put all the others at risk. So, how do you combat such technologically-advanced **phishing tactics**? With technologically-advanced email security like [Phish Protection](https://www.helpnetsecurity.com/2020/06/04/office-365-users-beware-of-fake-company-emails-delivering-a-new-vpn-configuration/).

![Protection from phishing](https://media.mailhop.org/phishprotection/images/2020/06/protection-from-phishing-7785.jpg) 

Phish Protection is **cloud based**, which means it protects every device (laptop or mobile) everywhere (home or office). _Phish Protection stops domain name spoofing, display name spoofing and malicious attachments_. It works with all major email services as a simple add on. _And most importantly, requires no hardware to purchase, no software to purchase and sets up in 10 minutes_.

If you still have employees working from home, don’t leave them out there on an island. _Protect them with Phish Protection for just pennies per user per month_. You can try it for **free for 60 days**.

## Topics

[ Phishing ](/tags/phishing/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Foundational 5m  0ktapus, Okta Breach Helps Attackers Launch Sophisticated Supply Chain Attacks  Sep 5, 2022 ](/blog/0ktapus-okta-breach-helps-attackers-launch-sophisticated-supply-chain-attacks/)[  Foundational 4m  13 Spear Phishing Attacks Examples To Justify Investment For Phishing Prevention Solutions In Your Organization  Aug 1, 2019 ](/blog/13-spear-phishing-attacks-examples-to-justify-investment-for-phishing-prevention-solutions-in-your-organization/)[  Foundational 4m  All 14 centers of Kettering Health were affected by a massive ransomware attack, Major outage in the Ohio medical center  May 23, 2025 ](/blog/14-centers-of-kettering-health-were-affected-by-massive-ransomware-attack-in-ohio-medical-center/)[  Foundational 4m  2021 Phishing Trends You Need To Be Wary Of  Aug 2, 2021 ](/blog/2021-phishing-trends-to-be-wary-of/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"The Perfect Phishing Setup: A VPN Configuration from the IT Department","description":"The Perfect Phishing Setup: A VPN Configuration from the IT Department: Hackers are always trying different ways to get you to let your guard down. In that.","url":"https://phishprotection.com/blog/the-perfect-phishing-setup-a-vpn-configuration-from-the-it-department/","datePublished":"2020-06-13T12:31:37.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2020-06-13T12:31:37.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/the-perfect-phishing-setup-a-vpn-configuration-from-the-it-department/"},"articleSection":"foundational","keywords":"Phishing","wordCount":406,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2020/06/protection-from-phishing-7785.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://phishprotection.com/foundational/"},{"@type":"ListItem","position":4,"name":"The Perfect Phishing Setup: A VPN Configuration from the IT Department","item":"https://phishprotection.com/blog/the-perfect-phishing-setup-a-vpn-configuration-from-the-it-department/"}]}
```