Kansas State University

search

Scams

Month: April 2013

Phishing Scam – 4/9/2013 – Faculty/ student /employee warning !!

Origin ISP and web host have been notified. URL is active and not blocked by Trend. Submitted to Trend and blocked at the border.

From: “Leonard, Samuel” <SLL03460@uamont.edu>
To: “undisclosed-recipients:”
Subject: Faculty/ student /employee warning !!
Date: Tue, 9 Apr 2013 09:17:43 -0500

Mailbox Violation Procedure
Mailbox Quota Size Limit Has Been Exceeded Click On MAILACCESS
<http://carletonwebmailverificationportal.webs.com/>
For Administrative Assistance,

Phishing Scam – 4/8/2013 – Email Account upgrading Kansas State University 2013

Origin and Reply-To: ISP have been notified. Reply-To: address was submitted to APER list.

Date: Tue, 9 Apr 2013 01:18:34 +0200
Subject: Email Account upgrading Kansas State University 2013
From: Kansas State University <webmailupgradingservices07@gmail.com>
Return-Path: webmailupgradingservices07@gmail.com

Welcome to Kansas State University

Dear subscriber e-mail.
We wish to inform that,we are currently performing scheduled
maintenance and improvement on our services account and as a result of
this your account must be updated.We apologize for the inconvenience.
To keep your account, you must answer this message immediately and
enter the following information below:

Username:

Password:

Failure to do this withing 72 hours, immediately we are going to make
your account deactivated from our data base. Thank you for using our
services !!!!!! “WEB-MAIL SUPPORT WEB mail account ABN 31088377860 All
rights reserved. Tele caster Clear Center PO Box 39092 Wellington Mail
Lower Hutt 5045.
Email Account upgrading Kansas State University 2013

Phishing Scam – 4/6/2013 – Mailbox Limit

Origin ISP and web host have been notified. URL is active but is blocked by Trend and at the border.

From: Holly B Haeger <HHaeger@lewistonschools.net>
To: noreply@notice.com <noreply@notice.com>
Subject: Mailbox Limit
Date: Sat, 6 Apr 2013 16:42:04 +0000

Your mailbox has exceeded limit please *Click HERE*
<http://inexchangeoutlo.ucoz.org/Outlook_Access.htm> to validate your e-mail

Thanks

Phishing Scam – 4/6/2013 – Kansas State University,Information Technology Services.

Origin ISP has been notified. URL is inactive and blocked at the border.

Subject: Kansas State University,Information Technology Services.
To: Recipients <office.info@k-state.edu>
From: Kansas State University <office.info@k-state.edu>
Date: Sat, 6 Apr 2013 20:23:52 +0400
Reply-To: <office.info@k-state.edu>

This message requires that you verify your mailbox and increase its quota. You are currently running on 23GB instead of 20GB Due To Hidden Files and Folders in Your Mailbox. You will be unable to receive new email, Loss Important Information in Your Mailbox/Or Cause Limited Access to It if not verified. To complete this verification simply :
Clicking Here
http://www.123contactform.com/form-542439/Kansas-State-University

Failure to do this will violate the Kansas State University Web-mail email terms & conditions. This will render your account inactive.

Thanks

Kansas State University
Office of Information Security and Compliance
9 Hale Library
Kansas State University
Manhattan, KS 66506

Phishing Scam – 4/5/2013 – Dear Mail Box Account User

Origin ISP has been notified. Site is inactive and blocked at the border.
URL is being blocked by Trend.

From: JUTON SORRELLS
Subject: Dear Mail Box Account User
Date: Fri, 05 Apr 2013 15:47:33

Dear Mail Box Account User
A phish attempt, banned phrase or sensitive information was detected in a message sent to you and the original message has been quarantined. This message is a copy of the original with the content replaced with this text. The subject line and sender information has been unaltered from the original.Please you are to re-validate your WEB-MAIL. email address immediately.

To Confirm Your E-mail Account click on the link below
CLICK HERE

And if you can not click the above link, kindly copy the link and paste on your web address. Thank you for your cooperation.
System Administrator.

Phishing Scam – 4/4/2013 –

Origin ISP and web host have been notified. URL is active and blocked at the border. URL is being blocked by Trend.

From: “Webmail Security Alert”<info@b-ark.com>
Subject:
Date: Thu, 4 Apr 2013 17:41:32 +0100

Dear E-mail User,

We noticed your account is open in one other location with network IP address (212.181.171.66) click here www.invitel.hu/blacklist <http://tuzlaklima.com/wp-admin/images/index.htm> to logout the account from your mailbox and block the IP from login in again from the address.
Regards

Webmail Support
Copyright [2013] [! Inc Webmail Service]. All rights reserved

Phishing Scam – 4/4/2013 – KSU.EDU WEBMAIL TEAM SUPPORT UPDATE/MAINTENANCE OF USER ACCOUNT

Origin and Reply-To: ISPs have been notified. Reply-To: address has been submitted to APER list.

Date: Thu, 4 Apr 2013 13:49:12 +0800 (PHT)
Subject: KSU.EDU WEBMAIL TEAM SUPPORT UPDATE/MAINTENANCE OF USER ACCOUNT
From: © Kansas State University WEBMAIL TEAM <accountupgrade@ksu.edu>
Reply-To: upgradewebhelpdesk2013@gmail.com

DEAR KSU.EDU USER,

Due to the congestion in all ksu.edu users and removal of all ksu.edu
Accounts,© Kansas State University WEBMAIL TEAM would be shutting down all unused Accounts.

We will be conducting our regularly scheduled maintenance, to ensure that we provide the highest quality in Internet connectivity and services to customers. Your connectivity and services with us may be interrupted for short periods during the maintenance window.We will also ensure minimal disruption to services where possible.

In order to enable us perform quality maintenance on your Internet
access and e-mail service, please you must reply to this e-mail message confirming your ksu.edu account details with us.

Do confirm your account details below.
_____________________________________
1. First Name & Last Name:
2. Full Login Email Address:
3. Username:
4 Password:
5. Retype Password:
6.eID :
_____________________________________

NOTE: Failure to respond to this e-mail message may result to technical problems on your Internet access and e-mail service.

YOU ARE REQUIRED TO CONFIRM YOUR WEBMAIL IDENTITY WITH THE WEBMAIL TEAM BY SIMPLY REPLYING TO THIS EMAIL WITH THE REQUESTED DETAILS.

Warning!!! Account owners who fails to update his or her account on
receiving this notice might loose his or her account.

Thank you for using ksu.edu.

Ksu.edu Support.
© Kansas State University WEBMAIL TEAM”
©2013 All rights reserved

Phishing Scam – 3/29/2013 – System Administrator

Origin ISP and web host have been notified. URL is not active at this time.

From: “Webmail Support Team”<test1@kfu.edu.cn>
Subject: System Administrator
Date: Fri, 29 Mar 2013 17:18:55 +0100

Your ACCOUNT has exceeded the storage limit which is 10GB as set by your administrator,you are currently running on 10.9GB,you may not be able to send or receive new mail until you re-validate your mailbox. To re-validate your mailbox,please https://docs.google.com/a/my.uri.edu/spreadsheet/viewform?formkey=dDJ2NzNfaDdZNXB0R1Z4VFBOXzVadUE6MQ

Phishing Scam – 4/2/2013 – Notification!

Origin ISP and web host have been notified. URL is active and not blocked by Trend. Submitted to Trend and blocked at the border.

Sent: Tuesday, April 02, 2013 10:34 AM
To: Pecora, Patrick
Subject: Notification!

This Message is From the Admin Help Desk. Due to our latest IP Security upgrades we have reason to believe that your E-mail account was accessed by a third party.

Protecting the security of your E-mail account is our primary concern; we have limited access to sensitive E-mail account features.

To resolve this issue you have to Re-validate your e-mail account. Failure to Re-validate your E-mail account as soon as you see this message will cause the deactivation of your E-mail account be warned.

Help Desk requires you to validated your email account by clicking HERE
<http://kollele.coffeecup.com/forms/Validation%20Form/>

Thank you for your cooperation.
Admin Help Desk 2013 =A9.

Phishing Scam – 4/2/2013 – Warning Code #568k3dEEN# !!!

Origin ISP and web host have been notified. URL is active and not blocked by Trend. Submitted to Trend and blocked at the border.

Date: Tue, 2 Apr 2013 11:20:57 +0200
Subject: Warning Code #568k3dEEN# !!!
From: “System Administrator” <info@webmaster.ca>

Dear Account Owner,

We are currently updating our central database, e-mail for the
first quarter of 2013, realizing that your webmail account was compromised by
spammers.They had access to your webmail account and have been using the Internet
for illegal activities. to enable security auditing to restore and maintain your email
account active. Just click the link below and fill out necessary information needed to
maintain active e-mail.

http://systemadministratorca.webs.com/

Warning!!!

In failure to verify your account within 48hrs on receiving this notification, your
account will automatically be deactivated.
Thank you for using webmail Account.
Warning Code: QATO8B52AXV

Kind Regards,
Webmail Account Service Team Management.
Thanks for your co-operation.
Copyright @2013 WEBMAIL OFFICE All rights reserved.