Kansas State University

search

Scams

Month: June 2013

Phishing Scam – 6/21/13 – Authorize Notification

Origin ISP and web host have been notified. URL is not active and blocked at the border. The URL is not blocked by Trend.

From: Joan McAdam [mailto:Joan.McAdam@msmc.edu]
Sent: Friday, June 21, 2013 7:33 AM
To: undisclosed-recipients:
Subject: AUTHORIZE NOTIFICATION

Confirm Your Web Mail:/Student/Employee
Web mail Confirmation/upgrade. System administrator requires all web user to confirm their web mail. New mails will be Block and Filter. for continual access of your web mail, please click on
WEB MAIL CONFIRMATION LINK to confirm your web mail.
This has become necessary to serve you better. Confirmation must be done with in 24 hours of receiving this notification.
© Copyright 2013. The System Administrator.

http://authurizelinkfromhelpdesk.webs.com/

Phishing Scam – 6/20/2013 – ATTENTION!!!

Origin ISP and web host have been notified. URL is active and not blocked at the border. The URL is being blocked by Trend.

From: “Jamison Christophe (75M079)” <CJamiso@schools.nyc.gov>
Subject: ATTENTION!!!
Date: Thu, 20 Jun 2013 21:23:15 +0000

This E-mail is sent by the HelpDesk Expert for IT Support system for Mailbox notification and update purposes. Your IP is causing conflict because it is been accessed in different server location. You need to Upgrade and expand your email quota click or copy and paste the below link to upgrade and verify your account.

CLICK HERE: <http://www.formlogix.com/Manager/UserConditionalSurvey237429.aspx?Param=VXNlcklkPTIzNzQyOS5Gb3JtSWQ9MQ==>

Failure to do this will result to email deactivation within 72hours Thank you for your understanding.
Copyright ?2013 Helpdesk Technical Support Centre.

Phishing Scam – 6/19/2013 – E-mail Update Alert!!!

Origin ISP and web host have been notified. URL is inactive and blocked at the border. The URL has been submitted to Trend.

Subject: [SPAM]E-mail Update Alert!!!
To: Recipients <mail@admin.net>
From: Mail Admin <mail@admin.net>
Date: Wed, 19 Jun 2013 04:33:47 +0800
Reply-To: noreply@mail.net

As part of ongoing corporate security evaluation procedures we have identified an online intrusion in your Web Mail account and our automated system scan shows that your account has been effected by some DGTX virus that might be very harmful to all our subscribers.

We strongly recommend you to copy or click this url so to scan your mailbox and complete the contact form now, http://www.orlforall.com/smslisttable/use/Telenor/form1.html note that none of your files will be lost during this routine service.Failure to upgrade your account will render your account from sending and receiving mails. For information and support please use our contact form in the help section indicate if your account is having any problem.

Thank you,

Microsoft IT Help Center.
2013 Microsoft Corporation.

Phishing Scam – 6/18/2013 – Message From Administrator

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: “Turtenwald, Andrea” <andrea.turtenwald@ces.uwex.edu>
Date: Tue, 18 Jun 2013 21:21:37 -0500
Subject: Message From Administrator

We are carrying out some maintenance on our database. As a result of that disabling unused email addresses.

Click here to keep your email address active<http://www.estudiocats.com.ar/logs/>

Please Note that any email addresses that is not been updated shall be disabled.

Phishing Scam – 6/19/2013 –

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: sarjomat <sarjomat@cmcvellore.ac.in>
Date: Wed, 19 Jun 2013 03:31:43 +0530
Subject:

Due to recent suspicious activities in your web-mail account and high amount of Spam mails we receive daily. you account have been blocked and made inactive to protect you, so to activate and unblock your account before routine deletion by our servers,

To upgrade your web account please click the link HERE <http://mail.r9.0hna.com/revalidate.php?webmail=upgrade>

please fill all details to unblock your account instantly
Thank you.

Phishing Scam – 6/17/2013 – Warning

Origin ISP and web host have been notified. URL is inactive and blocked at the border. The URL has been submitted to Trend.

Date: Mon, 17 Jun 2013 19:09:10 -0400 (EDT)
From: Kathrin Hast <khast@myvu.vinu.edu>
Subject: Warning

Dear members,
You mailbox has exceeded it storage limit as set by the administrator, and you will not be able to send or receive new mail until you re-validate. From revalidate – please clicking here, http://www.saccleaning.com/testimonials/use/upgrade/form1.html
System Administrator.

Phishing Scam – 6/17/2013 – Check this email (your webmail storage quota)

Origin and Reply-To: ISPs have been notified. Reply-to: address has been on APER list since 06/06/2012.

From: Webmail Quota <scanfer@tin.it>
Reply-To: webmailtechiniqueteam@planetmail.com
Subject: Check this email (your webmail storage quota)
Date: Mon, 17 Jun 2013 01:21:01 +0200 (CEST)

Webmail INTERNET;Webmail INTERNET Mail and its partners for reasons of debottlenecking of addresses wrongdoing by some users to make more performing our servicesto assist kind users to confirm their accounts in our databases so that they are victims when deleting accounts included in the black list. It is therefore necessary to ensure your online access by completing manually the card verification below by clicking with a click on the “Reply” button at the top of the message to make a filling correct the information request that once finished will be returned to the Service Staffs Mails to ensure account security your use final your Mail account
User Name:
Email address:
Password:
RE-CONFIRM Password:
Country / territory:
After updating your account data, your account will not be interrupted. Warning! Account owner that refuses to update his account after two weeks of receiving this warning will lose his account permanently and will contact Web hosting. For more information on how to protect your account you can visit the Centre of Webmail INTERNET! We apologize for any inconvenience caused and appreciate your help to maintain the integrity of the entire system Webmail INTERNET!.Thank you for using Webmail INTERNET!WEBMAIL INTERNET! Costumer CareCase number: 1087256Bien: du compteContact Date: 16/06/2013Copyright 2013 WEBMAIL INTERNET! Inc

Phishing Scam – 6/14/2013 – Mailbox Warning Alert ! ! !

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: “Webmail Helpdesk” <j.s.benhart@iup.edu>
Subject: Mailbox Warning Alert !!!
Date: Fri, 14 Jun 2013 17:21:15 -0400

Dear members,

You mailbox has exceeded it storage limit as set by your administrator, and you will not be able to send or receive new mail until you revalidate it by clicking here, http://invidiousnil.com/santaletter/use/upgrade/form1.html

Regards,
Technical Team.

Phishing Scam – 6/13/2013 – HELPDESK

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

Date: Thu, 13 Jun 2013 06:42:49 -0400
From: “Wilma Johnson” <johnsonw@gwd50.org>
Subject: HELPDESK

Information Technology Services (ITS) are currently updating our new website accounts. Please click the link below and follow the instruction to upgrade your email account CLICK HERE: http://www.unionvillefd.com/forms/use/url/form1.html
The new minimum quota level for e-mail accounts will be set to 2 G.
© Copyright 2013 | WEBMASTER EMAIL HELP DESK • • ALL RIGHTS RESERVED.

Phishing Scam – 6/11/2013 – Message From Administrator

Origin ISP and web host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: Marcia Rangel <MRangel@raypec.k12.mo.us>
Subject: Message From Administrator
Date: Tue, 11 Jun 2013 17:19:18

We are carrying out some maintenance on our database. As a result of that disabling unused email addresses.

Click here to keep your email address active<http://estudiocats.com.ar/Admin/>

Please Note that any email addresses that is not been updated shall be disabled.