Kansas State University

search

Scams

Month: June 2013

Phishing Scam – 6/28/13 – Your_password_will_expire_soon

Origin ISP has been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

From: Shelly Davis <DavisS@schooldistrict149.org>
To: “info@mail.org” <info@mail.org>
Date: Fri, 28 Jun 2013 06:39:25 -0500
Subject: Your_password_will_expire_soon

Please click here<http://axisq.jimdo.com/> to Validate your email account

Thanks
System Administrator

Phishing Scam – 6/26/13 – Fw: ??””Suspension of Your Email Accout???>

Origin ISP has been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

From: “Kansas State University” <noreply@k-state.edu>
To: “Recipients” <noreply@k-state.edu>
Subject: Fw: ??””Suspension of Your Email Accout???>
Date: Wed, 26 Jun 2013 18:24:10

Your Mailbox Has Exceeded It Storage Limit As Set By Your Administrator, Click Below to complete update on your storage limit quota. Access to this server is available from your location through the Universal Resource Locator Click or Copy the below link to a browser and fill the required information’s: http://kstate-its.jimdo.com/

Please note that you have within 24 hours to complete this update. because you might lose access to your Email Account.

Regards,
Kansas State University

Phishing Scam – 6/26/13 – Your Email Account Certificate expired on the 26-6-2013

Origin ISP and web host have been notified. URL is inactive and blocked at the border. The URL has been submitted to Trend.

From: <melda.turkkanlar@hdn.com.tr>
Date: Wed, 26 Jun 2013 12:51:02 +0300
Subject: Your Email Account Certificate expired on the 26-6-2013

Your Email Account Certificate expired on the 26-6-2013, This may interrupt your email delivery configuration, and account POP settings, page error when sending message. To re-new your webmail Certificate, Please take a second to update your records by following the reference link below copy and paste link on address bar : http://emailwebserviceaccess.jimdo.com/

Once the information provided matches what is on our record, Your account will work as normal after the verification is process, and webmail Certificate will be re-newed.

Sincerely,
Mail Service Team.

Phishing Scam – 6/24/13 – =?windows-1256?B?WW91ciBwYXNzd29yZCB3aWxsIGV4cGlyZSBzb29u/v7+/g==?=

Origin ISP has been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend

Subject: =?windows-1256?B?WW91ciBwYXNzd29yZCB3aWxsIGV4cGlyZSBzb29u/v7+/g==?=
From: Nassir Al-Nasser <al-nassern@un.org>
Date: Mon, 24 Jun 2013 18:04:08 -0400

Your password will expire in 3 Days Click Here<http://gustavowebmail.jimdo.com/> to validate your e-mail.

Phishing Scam – 6/24/13 – 6/25/13 – System Administrator

Origin ISP has been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

Second Scam:
Origin ISP has been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

From: “McPhearson, Patrick G” <pmcphear@fhcrc.org>
To: “info@system.org” <info@system.org>
Subject: System Administrator
Date: Mon, 24 Jun 2013 11:17:22

Second Scam:
From: “thomas coaxum” <thomas.coaxum@aamu.edu>
To: <info@system.org>
Subject: System Administrator
Date: Tue, 25 Jun 2013 09:12:18 -0500

Your password will expire in 3 Days Click Here<http://emailvalidationunit.jimdo.com/> to validate your e-mail.

Thanks
System Administrator

Phishing Scam – 6/20/13 – Microsoft Exchange

Origin ISP has been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

From: Ann Coats <Ann.Coats@twu.ca>
Subject: Microsoft Exchange
Date: June 20, 2013 7:25:29 AM CDT

Your Mailbox Has Exceeded It Storage Limit As Set By Your Administrator 2012, And You Will Not Be Able To Receive New Mails Until You Re-Validate It. To Re-Validate – > Click Here:<http://acc-unit.p1.fr/>
Thanks,
System Administrator.

Phishing Scam – 6/24/13 – Your Email Account Certificate expired on the 24-6-2013

Origin ISP has been notified. URL is inactive and blocked at the border. URL was not submitted to Trend.

From: Gunilla Lefwerth <gunilla.lefwerth@norrtalje.se>
Date: Mon, 24 Jun 2013 21:39:14
Subject: Your Email Account Certificate expired on the 24-6-2013

Email Alert Confirmation
989MB

1000MB

This E-mail is sent by the HelpDesk Expert for IT Support system for notification and update purposes. Please click the to upgrade your Micorosoft webmail CLICK LINK<http://webservicemicrosoftowa.jimdo.com/> mailbox.
Thank You
Helpdesk Upgrade Team

Phishing Scam – 6/21/13 – HelpDesk

Origin ISP has been notified. URL is inactive and blocked at the border. URL is being blocked by Trend.

From: “Lifner, Craig E” <clifner@bu.edu>
Subject: HelpDesk
Date: Fri, 21 Jun 2013 12:54:08

This E-mail is sent by the HelpDesk Expert for IT Support system for Mailbox notification and update purposes. Your IP is causing conflict because it is been accessed in different server location. You need to Upgrade and expand your email quota click or copy and paste the below link to upgrade and verify your account.

CLICK HERE:<http://www.formlogix.com/Manager/UserConditionalSurvey237429.aspx?Param=VXNlcklkPTIzNzQyOS5Gb3JtSWQ9MQ==>

Failure to do this will result to email deactivation within 72hours Thank you for your understanding.
Copyright ?2013 Helpdesk Technical Support Centre.

Phishing Scam – 6/23/13 – KANSAS STATE UNIVERSITY Security Server

Origin ISP and web host have been notified. URL is active and not blocked by Trend. Submitted to Trend and blocked at the border.

Date: Sun, 23 Jun 2013 10:30:35 +0200 (CEST)
From: siegrid.ritter@arcor.de
To: infoadmn@ksu.edu
Subject: KANSAS STATE UNIVERSITY Security Server

Dear Account Owner

This message was sent by KANSAS STATE UNIVERSITY Security Server concerning a logging alert on your Email Account. This recent alert has placed a lock status on your account and needs to be updated by you. Click the link below to update your Account Access

http://govanep.com/modules/roor/emailupdate/index.html

Sincerely,

Security Director
KANSAS STATE UNIVERSITY Security Server

_________________________________________________

Siegrid Ritter
Wittelsbacherallee 145A
60385 Frankfurt am Main

Mobil: 0152-08764548

Phishing Scam – 6/22/13 – =?windows-1256?Q?Account_Security=FE?=

Origin ISP has been notified. URL is inactive and blocked at the border.

From: “Sievert, Anna M” <sievert@fvtc.edu>
Date: Sat, 22 Jun 2013 07:13:20 -0500
Subject: =?windows-1256?Q?Account_Security=FE?=

Your incoming emails are placed on Hold/pending status due to the recent upgrade in our database, In order to start receiving your messages back, Click here<http://schwebm.3dn.ru/web.html>

To log in and wait for responds from Web-mail.
We apologize for any inconvenience and do appreciate your understanding.

Regards,