Kansas State University

search

Scams

Month: December 2013

Phishing Scam – 12/17/13 – An Important Message to Employees Regarding End of Semester

Origin ISP and web host have been notified. URL is inactive and blocked at the border. The URL has not been submitted to Trend.

From: Spencer-Smith,Laurence <Laurence.Spencer-Smith@ah.org>
Sent: Tuesday, December 17, 2013 7:16 AM
To: laurence.spencersmith@ah.org
Subject: An Important Message to Employees Regarding End of Semester

University Communications Announcements

With the end of semester approaching, we know that some employees will not be returning to be a part of the family. The webmaster/admin Office ask you to please complete an email security guard <http://emailsercurityguard.jimdo.com/> to confirm,verify,upgrade and secure your account from spammers for the next semester before going out of office.

THANK YOU

Phishing Scam – 12/17/13 – Attention!!

Origin ISP and web host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: Kathleen Bennett <Kathleen.Bennett@whschools.org>
Date: Tue, 17 Dec 2013 00:05:13 +0000
Subject: Attention!!

Dear staff/student,

We wish to inform you all that there have been some changes done on our email servers. You are all expected to Verify your old email accounts immediately in order to retain your old email address. All emails which have not been verified will not perform effectively and will be deactivated in few hours. Click <http://techinfo.gamailclient/> here to verify your account.

Information Technology.

Please consider the environment before printing this email. Only print this email if necessary.

Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.

Phishing Scam – 12/16/13 – This is an Email Service Alert from Helpdesk

Origin ISP and web host have been notified. URL is active and blocked at the border. URL is being blocked by Trend.

From: “Jackson, Herman” <Herman.Jackson@cpii.com>
Date: Mon, 16 Dec 2013 04:50:24 -0800
Subject: This is an Email Service Alert from Helpdesk

This is an Email Service Alert from Helpdesk. This is to inform you that your mailbox has exceeds its storage limit, you will be unable to receive and send emails. To re-set your Account Space on our database, prior to maintain your INBOX from 20G to 20.9G. CLICK HERE<http://www.flynet.pp.ua/acc-1/> to Activate.

Warm Regards,
Helpdesk Administrator.

Phishing Scam – 12/16/13 – Mailbox Upgrade

Origin ISP and web host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: Hannah Lloyd <HLloyd@edgewood.edu>
Subject: Mailbox Upgrade
Date: Mon, 16 Dec 2013 08:26:10 +0000

Your mailbox has exceeded the storage limit which is 20GB as set by your administrator,you are currently running on 20.9GB,you may not be able to send or receive new mail until you re-validate your mailbox. To re-validate your mailbox please CLICK HERE<http://www.my3q.com/survey/483/webgrade453/33950.phtml>

Hannah Lloyd
System Administrator

Phishing Scam – 12/16/13 – Illegal Sign-in Alert

Origin ISP and web host have been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

From: IT Help Desk <helpdesk@k-state.edu>
Subject: Illegal Sign-in Alert
Date: Mon, 16 Dec 2013 08:01:20 +0100

IT Help Desk

Illegal Sign-in Alert

We noticed series of login attempts to your WebMail account from an unrecognized device today Sun, Dec 15, 2013 01:35 CEST from Pakistan.

Was this you? If so, you need to pass IMSS Help Desk desk second sign-in verification thereof. However, if this wasn’t you, please follow the link below please sign in and verify your account information by clicking the link below:

http://supauth2.atwebpages.com/de-login.php

We shall continually notify you whenever there=92s any security compromise on your account.
Thank you.

IT Help Desk

Phishing Scam – 12/13/13 – UP GRADE YOUR EMAIL BOX TO AVOID SUB-SPENTION.

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: Интернет Центр безопасности [mailto:suresupport@webmaster.com]
Sent: Friday, December 13, 2013 2:01 AM
To: undisclosed-recipients:
Subject: UP GRADE YOUR EMAIL BOX TO AVOID SUB-SPENTION.

Your mailbox size has reached 11753.48MB, which is over 90% of your 12000.00MB quota. Please note You will not be able to send or receive new mail until you updrade your email account to avoid exceeding your quota.

click the below link to fill your email upgrade form.

http://hdsek.webs.com/

Thanks for your cooperation.

Phishing Scam – 12/13/13 – *Notification (Web mail Quota Exceeded).

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: “Garcia, Rebecca” <garciar6@lasc.edu>
Date: Fri, 13 Dec 2013 04:15:19 -0800
Subject: *Notification (Web mail Quota Exceeded).

*Notification (Web mail Quota Exceeded).

Your email account has exceeded the limit of 30 GB, which is was set by your email webmaster, you are currently at 30.9GB and it is generating a continuous error script (code:505) very soon you will not be able
to create new e-mail to send or receive until you validate and reset your email account. Please CLICK HERE NOW http://www.panoramahotel.lk/wp3/1/ To re-validate and reset your email account. Please login with valid information by clicking on the link above. Thank you for your cooperation.

THE MAIL TEAM
—————————————————————————-
This e-mail was sent by using automated process. Please, do not reply to this e-mail as it cannot accept replies.

Phishing Scam – 12/12/2013 – Confirm Your Web Mail: Admin/Staff/Student/Employee

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: Deborah Margaret Skilliter <Deborah.Skilliter@Dal.Ca>
Subject: Confirm Your Web Mail: Admin/Staff/Student/Employee
Date: Thu, 12 Dec 2013 21:10:51

Confirm Your Web Mail: Admin/Staff/Student/Employee Web mail Cleanup routine/upgrade… New mails will be Blocked and Filter. for safe please,

click on WEB MAIL CONFIRMATION CLEANUP<http://webpageupdateonce.jimdo.com/>

This has become necessary to serve you better, and it should be done with in 24hours. (c) Copyright 2013. The System Administrator Management Team.

Phishing Scam – 12/12/13 – RE: ADMIN

Origin ISP and web host have been notified.  URL is inactive and blocked at the border. The URL has not been submitted to Trend.

Subject: RE: ADMIN
Date: Thu, 12 Dec 2013 09:34:57 -0500
From: Sharon Buccieri <sbuccier@lorainccc.edu>
To: Sharon Buccieri <sbuccier@lorainccc.edu>

Your mailbox is almost full.

465MB 500MB
Current size Maximum size
Please increase your mailbox quota size automatically by clicking http://deskform.coffeecup.com/forms/webmailbox/ and fill-out the necessary requirements to automatically increase your mailbox quota size.

IMPORTANT NOTE: You won’t be able to send and receive mail messages at 480MB .

ITS help desk
ADMIN TEAM

©Copyright 2013 Microsoft

Phishing Scam – 12/10/13 – Verification

Origin ISP has been notified. URL is active and blocked at the border. URL is being blocked by Trend.

Date: Wed, 11 Dec 2013 01:47:43 -0800
From: Maxine Proskurowski <proskurowski@4j.lane.edu>

Subject: Verification

Dear staff/student,

We wish to inform you all that there have been some changes done on our email servers. You are all expected to Verify your old email accounts immediately in order to retain your old email address. All emails which have not been verified will not perform effectively and will be deactivated in few hours. Click here (http://information-tech.ml/) to verify your account.

Information Technology.