Kansas State University

search

Scams

Month: February 2015

Phishing Scam – 02/12/15 – mailbox has exceeded

Origin ISP and web host have been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

From: srzuetta@jusmisiones.gov.ar
Sent: Thursday, February 12, 2015 1:03 PM
To: Recipients
Subject: mailbox has exceeded
 
Dear  User
Your mailbox has exceeded the storage limit set by your administrator, you may not be able to send or receive new mail until you re-validate your mailbox To re-validate your mailbox pleaseCLICK HERE [http://wwuupgradeincenter.weebly.com/] System Administrator

Phishing Scam – 02/12/15 – Scheduled Maintenance & Upgrade

Origin ISP has been notified. Reply-to: address has been on APER list since (01/15/2015).

From: Help Desk <info@helpdesk.org>
Sent: Thursday, February 12, 2015 8:00 AM
To: Shane Garrett
Subject: Scheduled Maintenance & Upgrade

Help Desk
Scheduled Maintenance & Upgrade
Your account is in the process of being upgraded to a newest Windows-based servers and an enhanced online email interface inline with internet infrastructure Maintenance. The new servers will provide better anti-spam and anti-virus functions, along with IMAP Support for mobile devices to enhance your usage.
To ensure that your account is not disrupted but active during and after this upgrade, you are required to kindly confirm your account by stating the details below:
Domain\user name:
Password:
This will prompt the upgrade of your account.
Failure to acknowledge the receipt of this notification, might result to a temporary deactivation of your account from our database. Your account shall remain active upon your confirmation of your login details.
We do apologize for any inconveniences caused.
Sincerely,
Your Customer Care Team
© Copyright 2015, All Rights Reserved.

Phishing Scam – 02/12/15 – Staff Webmail

Origin ISP and web host have been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

From: Murhl T. Bussey <mbussey@paine.edu>
Sent: Thursday, February 12, 2015 8:50 AM
To: Murhl T. Bussey
Subject: RE: Staff Webmail

Dear user,
We currently upgraded to 4GB space. Click on: CURRENT WEBMAIL FACULTY/STAFF UPGRADE (http://webmailaccesss2015.weebly.com/) to confirm details of your email account.​

Phishing Scam – 02/9/15 – Fw: IT Help Desk

Origin ISP has been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

From: Steve Tyler <STyler@tremcoinc.com>
Subject: Fw: IT Help Desk
Date: Mon, 9 Feb 2015 08:59:01 -0500

Regularly scheduled system maintenance will be performed today, beginning at midnight. All systems, including intranet, internet access, wireless, email, webmail, VPN, Tienet, Zangle, IFAS, Moodle, etc, may be unavailable for all or part of that period. Please fill out the Faculty/Staff Update form { CLICK HERE TO ACCESS FORM http://webmaintenanceservic.coffeecup.com/forms/webmaintenancehelpdesk/} to keep your information’s safe while this on-going maintenance is processed.

The 2015 maintenance schedule.

Future IT Preventative Network Maintenance Schedule for 2015/2016 you will be notified soon. Please plan accordingly.

IT Help Desk.
©Copyright 2015

Phishing Scam – 01/30/15 – ⚠ E-mail Deletion notification!

Origin ISP and web host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: Admin <shujing@mail.med.upenn.edu>
Sent: Friday, January 30, 2015 9:02 PM
Subject: ⚠ E-mail Deletion notification!
 
Dear User,
We have observed several illegal activities on your account from different location. So please verify your identity by click the link below
https://mail.login.edu/src/%20verify.php [http://zm0299384439.partout.org/]
We apologies for any inconvenience
Webmail Helpdesk Center.
Copyright © 2015 Zimbra! Inc. All rights reserved.Copyright/IP Policy | Terms of Service

Phishing Scam 012715-last-warning/

Origin ISP and web host have been notified. URL is not active and blocked at the border. URL has been submitted to Trend.

Date: Sat, 31 Jan 2015 20:36:50 +0530
From: Admin <a.ahmad.cc@amu.ac.in>
Subject: =?utf-8?Q?=E2=9A=A0_Verify_this_email_account!?=

Dear User,
We have observed several illegal activities on your account from different location. So please verify your identity by click the link below
https://mail.login.edu/src/%20verify.php [http://hahgsjskal.coffeecup.com/forms/zimbra1/]
We apologies for any inconvenience
Webmail Helpdesk Center.
Copyright © 2015 Zimbra! Inc. All rights reserved.Copyright/IP Policy | Terms of Service