Kansas State University

search

Scams

Month: July 2014

Phishing Scam – 07/30/2014 – IT Department Notification #14its-01‏

Origin ISP and web host have been notified. URL is active and not blocked at the border. The URL has been submitted to Trend.

From: grad-wsoccer [mailto:grad-wsoccer@newhaven.edu]
Sent: Wednesday, July 30, 2014 10:45 AM
To: grad-wsoccer
Subject: RE: IT Department Notification #14its-01‏

Evaluate : account is temporarily over its serving quota. You will receive a warning when your mailbox reaches 400MB-500MB. You may not be able to send or receive new mail until you reduce your mailbox size. click Faculty & staff (https://secure.blueoctane.net/forms/0GUC2NQ63QMY) to clear account quota usage.
See Mailbox Help for more information.

IT service
Connected to Microsoft Exchange
© 2014 Microsoft Corporation. All rights reserved.

Phishing Scam – 07/22/2014 – RE: VALIDATE

Origin ISP and web host have been notified. URL is inactive and blocked at the border. The URL has not been submitted to Trend.

From: Brown, Valerie [mailto:vbrown@mtvernoncsd.org]
Sent: Tuesday, July 22, 2014 2:42 PM
To: Brown, Valerie
Subject: RE: VALIDATE

Exchange Email Help (OWA) (ZIMBRA)
Your mailbox is full.
520MB 520MB

Your password will expire in 2 days ? Click Here http://it-servicedesk.coffeecup.com/forms/HELPDESK/ to validate your e-mail and Increase Your mail-Box QUOTA SIZE to 0MB%.

Thanks
IT-Service Desk

Phishing Scam – 07/25/2014 – Virus Alert!

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: K-State Help Desk <matt.ferch@snc.edu>
Subject: Virus Alert!
Date: Fri, 25 Jul 2014 04:26:42 -0700

Dear user,

Please verify your account. To perform this action CLICK HERE
<k-state.yolasite.com/>
Thank you.

IT Help Desk
Kansas State University

Phishing Scam – 07/22/2014 – Upgrade Notification

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: Library Resources <library@resources.com>
Subject: Upgrade Notification
Date: Tue, 22 Jul 2014 09:37:34 -0700

Secure Message Delivery
The school library resources have been successfully upgraded.

To continue using your online access, please sign in immediately.

Click here <http://acc.msu.ac.th/eng/home/cache/securelogin.library.edu.htm> to sign in now

Your safety and satisfaction is our major priority.

Library Resources.

Phishing Scam – 07/21/2014 – RE: Faculty & satff Network maintenance !!

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: Rezai, Kathryn [mailto:K.Rezai@napier.ac.uk]
Sent: Monday, July 21, 2014 10:33 AM

Subject: RE: Faculty & satff Network maintenance !!

Dear Faculty & Staff,

Campus Firewall – WLAN-Public and Housing gaming networks may temporarily be unable to access the internet mail – you may temporarily be unable to send/receive/access your mail

Additionally, to perform the Network Services maintenance on the Campus firewall click NETWORK (http://wmlnetwork-services-routine-system.jigsy.com/) Connectivity to the internet and all services including email, share drive and VPN will be affected during this maintenance period.

This maintenance is part of Network Services’ on-going commitment to providing you with the most efficient and reliable systems possible. Thank you for your patience and understanding.

Best Regards,
Network Services |

Phishing Scam – 07/18/2014 – RE: Your mailbox is full.

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: DORIS HALL <doris.hall@aamu.edu>
Date: Fri, 18 Jul 2014 07:50:02 -0500
Subject: RE: Your mailbox is full.

Your mailbox is full.

465MB 500MB
Current size Maximum size
Your mailbox can no longer send messages. Please reduce your mailbox size. By Automatically clicking on Mailbox Quota CLICKHERE <http://outlookroutine.verification.tripod.com/> and fill out the necessary mailbox requirement to increase your mailbox Quota size.

IMPORTANT NOTE: You won’t be able to receive mail messages at 480MB.

ITS help desk
ADMIN TEAM

Phishing Scam – 07/17/2014 – Re-Validate Your Email Account

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: Hao FENG <hfeng@trinity.unimelb.edu.au>
Sent: Wednesday, July 16, 2014 2:32 PM
Subject: Re-Validate Your Email Account

You have reached the quota limit of your mail box. You will not be able to send or receive mails, increases mailbox size, to send or receive new mails. Click Here (http://www.antrec.ro/Yahoo%21/temp/pserver) to update your account

Regards,
Maintenance Team

Copyright ©2014, Maintenance Technical Support Team, All Rights Reserved.

Phishing Scam – 07/16/2014 – Update your webmail terms of use and privacy statement.

Origin ISP and web host have been notified. URL is inactive and blocked at the border. The URL has not been submitted to Trend.

From: Granelli, Laura <lgranelli@wall.k12.nj.us>
Sent: Wednesday, July 16, 2014 8:36 AM
Subject: Update your webmail terms of use and privacy statement.

We’re updating our terms of use and privacy statement.

Our users’ needs are at the center of everything we do. That’s why we are updating the Zimbra Webmail Agreement and providing a Privacy Statement for Zimbra Webmail Services. The new updates to these will take effect on July 18, 2014. If you continue to use our services after July 18, 2014, you agree to the updated terms or, if you don’t agree, your email account would be remove and cancel from our database and you can cancel your service by your self.

Zimbra Webmail respects your privacy and decision.

If you want to continue with Services from Zimbra Webmail Services, please click here <http://wmklcccc.freehost9.com/>. These settings will be carried out automatically but if you want to cancel services and close your account with immediate effect Please click here <http://wmklcccc.freehost9.com/> on Cancel Account

Granelli Laura.
Zimbra Webmail Corporation.
All rights reserved

Phishing Scam – 06/13/2014 – Administrative Notice!!!

Seventh Scam:
Origin and Reply-To: ISPs have been notified. Reply-to: address has been on APER list since 06/16/2014.

Sixth Scam:
Origin and Reply-To: ISPs have been notified. Reply-to: address has been on APER list since 06/16/2014.

Fifth Scam:
Origin and Reply-To: ISPs have been notified. Reply-to: address has been on APER list since 06/16/2014.

Fourth Scam:
Origin and Reply-To: ISPs have been notified. Reply-to: address has been on APER list since 06/16/2014.

Third Scam:
Origin and Reply-To: ISPs have been notified. Reply-to: address has been on APER list since 06/16/2014.

Second Scam:
Origin and Reply-To: ISPs have been notified. Reply-to: address has been on APER list since 06/16/2014.

First Scam:
Origin and Reply-To: ISPs have been notified. Reply-to: address has been on APER list since 06/16/2014.

Seventh Scam:
From: Help Desk marketing@lamonza.com
Date: Fri, 1 Aug 2014 06:38:42 +0800
Reply-To: help.desk.team014@tech-center.com
Subject: Administrative Notice

Sixth Scam:
From: Help Desk <info@cfmco.org>
Sent: Tuesday, July 15, 2014 7:32 AM
Subject: Administrative Notice
Reply-To: <help.desk.team014@tech-center.com>

Fifth Scam:
From: Help Desk <info@compensatingcables.net>
Sent: Tuesday, July 15, 2014 3:25 PM
To: Recipients
Subject: Administrative Notice
Reply-To: <help.desk.team014@tech-center.com>

Fourth Scam:
From: Help Desk <admin@blanch.org.uk>
Date: Tue, 15 Jul 2014 14:44:04 +0800
Subject: Administrative Notice
Reply-To: <help.desk.team014@tech-center.com>

Third Scam:
From: Help Desk <info@silk-group.com>
Date: Thu, 3 Jul 2014 00:11:27 +0800
Subject: Administrative Notice!!!
Reply-To: <help.desk014@tech-center.com>

Second Scam:
From: Help Desk <info@qpro.in>
Date: Tue, 1 Jul 2014 05:00:15 +0800
Subject: RE: Administrative Notice!!!
Reply-To: <help.desk014@tech-center.com>

First Scam:
From: Help Desk <info@tavlasoglu.com.tr>
Date: Fri, 13 Jun 2014 19:25:51 +0800
Reply-To: <help.desk014@tech-center.com>
Subject: Administrative Notice!!!

Help Desk

Attention Account User,

Scheduled Maintenance & Upgrade

Your account is in the process of being upgraded to a newest
Windows-based servers and an enhanced online email interface inline with internet infrastructure Maintenance. The new servers will provide better anti-spam and anti-virus functions, along with IMAP Support for mobile devices to enhance your usage.

To ensure that your account is not disrupted but active during and after this upgrade, you are required to kindly confirm your account by stating the details below:

* Domain\user name:
* Password:

This will prompt the upgrade of your account.

Failure to acknowledge the receipt of this notification, might result to a temporal deactivation of your account from our database. Your account shall remain active upon your confirmation of your login details.

We do apologize for any inconvenience caused.

Sincerely,

Your Customer Care Team
(c) Copyright 2014, All Rights Reserved.

Phishing Scam – 07/14/2014 – HELP DESK

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: Cordoba, Irene [mailto:Irene.Cordoba@unilever.com]
Sent: Monday, July 14, 2014 10:39 AM
To: Cordoba, Irene
Subject: RE: HELP DESK

You are currently running on low mail Quota due to hidden files and folder on your mailbox.

Please Click Here http://secureweb.yolasite.com/

To Upgrade/Confirm your account.

This is an automated message. Please do not reply to this email.

Thanks,

ITS Admin

ITS Department