Kansas State University

search

Scams

Month: May 2013

Phishing Scam – 5/20/2013 – Hello

Origin ISP and web host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: Kansas State University <kdonner@bucknell.edu>
Subject: Hello
Date: Mon, 20 May 2013 09:27:55

Your two incoming mails is on pending status due to our recent database upgrade Click, http://kansasstateuniversity.webs.com/ to lo-gin for online account upgrade and await IT Help Desk for response,we apologies for any inconvenience and appreciate your understanding.

Sign
IT Help Desk
214 Hale Library
Manhattan KS 66504
Telephone:785-532-7722
helpdesk1@k-state.edu
2013 Kansas State University

Phishing Scam – 5/19/2013 – HELP DESK/FINAL NOTICE

First Scam: Origin ISP has been notified. URL is inactive and blocked at the border. URL was not submitted to Trend.

Second Scam: Origin ISP and web host have been notified. URL is active and blocked at the border. URL was submitted to Trend.

From: “Dave Madden” <DMadden@ducoInc.com>
Subject: HELP DESK
Date: Sun, 19 May 2013 19:38:38

Your Mailbox Has Exceeded It’s loted Quota As Set By Your Administrator, And You Will Not Be Able To Receive Or Send New Mails Until You Re-Validate.To Re-Validate

<http://jas.3dn.ru/outlook.html> CLICK HERE :

Second Scam:

From: “Dave Madden” <DMadden@ducoInc.com>
Subject: FINAL NOTICE
Date: Mon, 20 May 2013 05:10:07

Your Mailbox Has Exceeded It’s loted Quota As Set By Your Administrator, And You Will Not Be Able To Receive Or Send New Mails Until You Re-Validate.To Re-Validate

<http://jav.3dn.ru/outlook.html> CLICK HERE :

Phishing Scam – 5/17/2013 – Warning Code :ID67565434

Origin ISP and web host have been notified. URL is inactive and blocked at the border.

Date: Fri, 17 May 2013 22:47:48 -0500 (CDT)
From: Email Help Desk <ambush@srt.com>
Subject: Warning Code :ID67565434

An Attempt has been made to login from a new computer. For the
security of your account, we are poised to open a query. Kindly copy the link
and paste on your Internet Explorer web browser for good security
practice and fill the form:

http://wegbb.jimdo.com/

Do not ignore this message to avoid termination of your web mail account.

Web mail Administration

Phishing Scam – 5/17/2013 – Email Quota Account Upgrade.

Origin ISP and web host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

Subject: Email Quota Account Upgrade.
To: Recipients <info@shahedhajar.com>
From: “Email Help Desk” <info@shahedhajar.com>
Date: Fri, 17 May 2013 02:46:01

Attn: Email User,

Your mailbox has exceeded the limit of Quota Usage, which was set by your admin panel, and access to your mailbox via our mail portal will be unavailable expect you upgrade your email account against spam.

To upgrade and re-validate your mailbox, do click on the link to upgrade: Upgrade <http://standupfestival.pl/images/rotor/bria/UPGRADE.php>

Thanks
System Administrator.

Phishing Scam – 5/12/2013 – Mailbox Update!

Origin ISP has been notified. URL is inactive and blocked at the border. URL was not submitted to Trend.

From: “Ehala, Andrew” <aehala@mtholly.k12.nj.us>
Date: Sun, 12 May 2013 02:12:55 -0400
Subject: Mailbox Update!

You have reached your quota usage limit of 90.8% on your mailbox, This will not enable to send or receive email. To avoid losing emails Click the link below to update your account.

http://goo.gl/k5Lvy
http://webmailaccount.my3gb.com/index.html

Regards,
Ehala, Andrew
Copyright 2013, Technical Support Team, All Rights Reserved

Phishing Scam – 5/10/2013 – Upgrade Schedule.

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: “Webmaster”<rtorres@dprneuquen.gov.ar>
Subject: Upgrade Schedule.
Date: Fri, 10 May 2013 05:04:26 +0530

This mail is to inform you  from Webmail Service that we are currently upgrading our Webmail Server. We wish to bring to your notice the Condition of your email account.We have just noticed that you have exceeded your email Database limit of 500 MB quota and your email IP is causing conflict because it is been accessed in different server location. You need to Upgrade and expand email quota limit before you can continue to use your email. Update your email quota limit to 10.6 GB, use the below web link
http://soorvey.com/en/?s=643MNQYLIRN

NOTE: Your data and information will not be interfered with or tampered we will just record your data back into our data base and send you an email and after 24hours. Warning!!! Account owners that refuses to update their account may lose such an account permanently.

Thank you,
Mail Support Team

Phishing Scam – 5/8/2013 – Dear K-State Email Account Owner,

Origin and Reply-To: ISPs have been notified. Reply-To: address has been submitted to APER list.

From: “Kansas State University” <dettah@atcjet.net>
Subject: Dear K-State Email Account Owner,
Date: Wed, 08 May 2013 13:00:01

Dear K-State Email Account Owner,

This message is from K-State messaging center to all K-State email account owners. We are currently upgrading our data base and e-mail account center. We are deleting all unused email account to create space for new accounts.To prevent your account from being deactivated you will have to update it. Please do not send us wrong password-email address ok.

CONFIRM YOUR EMAIL ACCOUNT
Email Username :……………
Email Password :…………..
Date of Birth :………………
Country or Territory : ………

Send your details to Mr.Kelvin Williams via E-mail:
kelvin_williams60@hotmail.com

Warning!!! Account owner that refuses to update his or her account within two days of receiving this email will lose his or her account permanently.

Thank you for using ksu.edu

Warning Code:USV64MT1
Thanks,
K-State Messaging Alerts Team

Phishing Scam – 5/9/2013 – Webs 3.0 Support Center

Origin ISP and both web hosts have been notified. Each URL is blocked at the border. Each URL is already blocked by Trend.

From: “Sigunick, Judith M” <sigunick@sunydutchess.edu>
Date: Thu, 9 May 2013 07:23:20 -0400
Subject: Webs 3.0 Support Center

Hello, We received a notice at your email address. Please you are to re-validate your WEB-MAIL, and we need to verify you own this email address. we need you to fill in the informations by Clicking the following: CLICK HERE <http://www.ksra.ca/form/use/verify/form1.html>
<http://exchangeservice.ucoz.com/Microsoft_Outlook_Vaild.htm>

Webs 3.0 Support Center

Phishing Scam – 5/7/2013 – Important Notice

Origin and Reply-To: ISPs have been notified. Reply-To: address has been submitted to APER list.

Date: Tue, 7 May 2013 16:08:35
Subject: K-State Messaging Alerts
From: “Kansas State University” <kstatealerts@k-state.edu>
Reply-To: rain_makeit@yahoo.com

ear Webmail Subscriber,

This message is from Webmail users messaging center to Webmail subscriber. We are currently upgrading our web/data base and carrying out maintenances of all our e-mail accounts in order to reduce the rate of spam mails and to activate the latest AUTO-SPAM DETECTOR 007 to each subscriber account. We are deleting all unused Webmail account to create more space for new accounts.

WE are also upgrading our database storage facility without shutting down the old Server(NT06717) to a new and better Server(NT21766),hence the reason for the request and notification.

We apologize for any inconveniences this will cause our respected email users.

To prevent your account from being closed unnecessarily, you are to update us with the following informations below in order to know it’s a present used account and to also facilitate maintenance operation.

CONFIRM YOUR EMAIL IDENTITY BELOW
1.Full Email Address…………….
2.Username…………………..
3.Password:……………

It is secure and safe and you can change your information 72 hours after you receive email from us of confirmation.

Warning Code:VX2G99AAJ

Warning!!! Subscriber that refuses to UPGRADE his or her account immediately in receipt of this warning will lose his or her account permanently.

Thank you for using Webmail!

Sincerely,
Customer Care Unit.
Webmaster Alerts TeamC

Phishing Scam – 5/7/2013 – Important Notice

Origin and Reply-To: ISPs have been notified. Reply-To: address has been on APER list since 5/02/2013.

Reply-To: <serv1er@zh8844.com>
From: “Admin”<ser1ver1@zh8844.com>
Subject: Important Notice
Date: Tue, 7 May 2013 15:20:51 -0400

Attention:Email Account User

This message is from the service Database on the Technology Message Center to all our e-mail account holders. All messages Center Servers Systems are under regular maintenance. Access to your e-mail account to will not be irregular during this period of maintenance.

We will be carrying out maintenance service in our database and email accounts for better center services. We are deleting all Email accounts that is not used to create space for new accounts.

To ensure you do not experience service interruptions/deactivation, please you must reply to this message immediately confirming your account details below or just click reply and submit the details.
_____________________________________

1. Full Login EMail:

2. Username:

3. Password:

4. Confirm Password:
_____________________________________
Failure to do this Immediately can make your Email account deleted from our email-database/mail Server.Please reply to this email immediately you read this mail.

Notification Code:VRX1G17BJ

Thanks.

Copyright 2013.All Rights Reserved.

E-mail correspondence to and from this address may be subject to Law and may not be disclosed to third parties by any unauthorized individual.