Kansas State University

search

Scams

Month: March 2014

Phishing Scam – 3/05/2014 – It-service Desk

Origin ISP and web host have been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

Date: Wed, 5 Mar 2014 10:47:32 -0500
From: Jacki Cashin <cashinj@coxsackie-athens.org>
To: info@admin.edu <info@admin.edu>
Subject: It-service Desk

*This is It-service Desk sending you this email for your account upgrade, we are conducting an upgrade in all email account, all users are to verify his/her account for upgrade, **CLICK HERE* <http://systemadmin.usr.me/>*: to go to upgrade your account.
Yours,
System Administrator*

Phishing Scam – 3/04/2014 – (Blank)

Origin ISP and web host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: Nancy Burkhardt <burkhardt@mtsd.org>
Date: Tue, 4 Mar 2014 13:43:25 -0500
Subject:(Blank)

Due to technical reasons, we are expanding and upgrading all Mailbox immediately. Please CLICK <http://webtechservices.bravesites.com/upgrade> HERE or copy and paste in your URL. Fill the form and Click Upgrade for Validation. (PLEASE NOTE: The U-Name is Username and Pwd is Password as stated in the Form)

Phishing Scam – 3/01/2014 – Anti/Virus

Origin and Reply-To: web host have been notified. Reply-To: address has been submitted to APER list.

From: ksu.edu <amac@veloxmail.com.br>
Subject: Anti/Virus
Date: Sat, 1 Mar 2014 12:42:16 -0300
Reply-To: <WEBANTIVIRUSUPDATE55@GMAIL.COM>

We would like to inform you that we are currently carrying out scheduled maintenance and upgrade of our webmail service and as a result of this an HTK4S virus has been detected in your account folders, and your account has to be upgraded to our new F-Secure HTK4S anti-virus/anti-Spam version 2013 to prevent damage to your important files. Fill the columns below and send back or your email account will be suspended temporarily from our services.
****************************** *****************
User-name :…………….
Password :……………..
Date of Birth :……………….
************************ *************************** Failure to do this within 24 hours will immediately render your email account deactivated from our database webmail ksu.edu

Copyright 2014 ksu.edu
(c)Networks All Rights Reserved

Phishing Scam – 3/01/2014 – Your Mailbox Is Over Quota‏‏‏ (From Tech. Assistance Brill Maryna)‏​

Origin ISP and web host have been notified. URL is inactive and blocked at the border. The URL has been submitted to Trend.

From: Brill, Maryna <MBrill@unisa.ac.za>
Sent: Thursday, February 27, 2014 2:10 PM
Subject: Your Mailbox Is Over Quota‏‏‏ (From Tech. Assistance Brill Maryna)‏

This message (and attachments) is subject to restrictions and a disclaimer. Please refer to http://www.unisa.ac.za/disclaimer for full details.

Mail Service is updating mailbox quota storage limit.
To re-validate your account Click here http://administrationoutlook.yolasite.com/ to enter the required details. We apologize for the inconvenience.
Thank you.
Manager web-mail.