Phish: Fraudulent Zoom meeting invitation

Published: April 1, 2026

This phishing email attempts to steal personal information and login credentials by providing false information about the user’s Zoom account. The phishing email contains links that direct you to a fake login screen asking for Zoom credentials or attachments that trigger immediate downloads.

When a scammer has obtained your account credentials, they can attempt to log in to your account. If you receive a Zoom invitation that you did not expect, do not accept the request. Report suspicious Zoom notifications to security.response@utoronto.ca immediately.

Navigate directly to the official Zoom website or use the app to join meetings instead of clicking email links.

Email details

Subject:

Fw: Zoom Meeting Invitation from Jane Doe

Hi There

JANE DOE INVITES YOU TO A SCHEDULED ZOOM MEETING

Please click the button below to view the meeting invitation. Then, you’ll be able to message and call each other.

View Invitation

To see the list of invited guests, click here.

Thank you.
Zoom

Phishing cues

Logo or branding imitation

The email imitates the Zoom logo and template to evoke trust.
Generic greeting

The email uses a generic greeting.
Poses as a trusted or legitimate source

The sender name does not match the Zoom invite and appears to pose as a U of T professor to influence the recipient to take action.
URL hyperlinking

The displayed hyperlink text may appear safe but conceals a different, malicious web address. Always hover over links to view the actual URL.

Report phishing

If you receive a suspicious email, do not open attachments or click on links. Report phishing attempts to security.response@utoronto.ca.

Phish Bowl

Phish Bowl

Phish Bowl