Kansas State University

search

Scams

Month: June 2015

Phishing Scam – 06/29/2015 – FW: Mailbox Upgrade

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: “Ebert,Samantha” <sme78@drexel.edu>
Date: Mon, 29 Jun 2015 16:47:49 +0000
Subject: FW: Mailbox Upgrade

Your Mailbox Is Almost Full!
2426MB                       5000MB
Your mailbox account has exceeded it storage limit. You will not be able to receive new mails until you update your account. Please Click Here  [http://directory.enet.cl/verify.HTML]to complete your update for our new Owa/outlook improved web mail.
ITS-Help Desk
© 2015 Microsoft Corporation. 
All rights reserved

Phishing Scam – 06/27/2015 – Admin

The URL is active and is blocked at the border. The URL was submitted to Trend.
The ISP and Web Host were notified.

From: blouduiker@mweb.co.za
Sent: Saturday, June 27, 2015 8:17 AM
To: ;
Subject: Admin

Your ksu.edu account has been temporally suspended, and this means that you will not be able to send and receive new email messages. This is because of the on-going yearly web maintenance and deleting of inactive ksu.edu accounts. You are then requested to verify your ksu.edu account below for upgrading.

Click Or Open this link to VERIFY your Account: CLICK HERE < http://emailvalidation111.weebly.com/ >

Phishing Scam – 06/26/2015 – RE: New security email update.

The URL is not active and is blocked at the border. The URL was submitted to Trend.
The ISP and Web Host were notified.

From: Ortega, Rafael <rortega@itsmarta.com>
Sent: Friday, June 26, 2015 2:10 AM
To: Ortega, Rafael
Subject: RE: New security email update.

Dear mailbox user.
New security updates need to be performed on our servers,due to the rate of phishing. Please click here [http://owamaintenance2000.wix.com/outlookwebapp] and sign in to the IT Help server for maintenance and update of your mailbox.
Please note that,this update is compulsory to all staff and student of this institution and please kindly forward this message to all your friends and groups on your mailbox.

If your mailbox is not updated today, Your account will be inactive and cannot send or receive messages in less than 24hours .
On behalf of IT, this IT Alert Notification was brought to you by the Help Desk in the Customer Support Department. This is a group email account and its been monitored 24/7, therefore, please do not ignore this notification, because its very compulsory.

Sincerely.
Admin Service.

©2015 Microsoft outlook. All rights reserved.

Phishing Scam – 06/25/2015 – E-mail Administrator

Origin ISP and web host have been notified. URL is not active and is blocked at the border. The URL has been submitted to Trend.

From: Cortez, Mark J
Sent: Thursday, June 25, 2015 1:46 AM
Subject: E-mail Administrator

Dear Account User,
Your E-mail mailbox has exceeded the limit of 23,432, which is as set by the ADMINISTRATOR, you are currently at 23,000, very soon you will not be able to send or receive email until you validate your mailbox. To re-validate your mailbox, click on the link below and follow the instruction for your upgrade.
To prevent your email account from being closed, re-validate your mailbox below please click here [http://webmailshdsd.altervista.org/index.php.html] [http://webmailshdsd.altervista.org/index.php.html]
Sincerely,
System Administrator.

Phishing Scam – 06/22/2015 – Important Information regarding your TIAA-CREF Account.

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: TIAA-CREF Security <do_not_reply_mt@communications.tiaa-cref.org>
Subject: Important Information regarding your TIAA-CREF Account.
Date: Mon, 22 Jun 2015 21:50:40 +0300

TIAA-CREF: Financial Services for the Greater Good – Your Account
This email contains an important notice from Teachers Insurance and Annuity Association of America (TIAA) and TIAA-CREF Life Insurance Company, College Retirement Equities Fund (CREF), TIAA-CREF Funds, TIAA-CREF Life Funds, Teachers Advisors Inc, TIAA-CREF Investment Management, LLC, Teachers Personal Investors Services Inc, TIAA-CREF Individual & Institutional Services, LLC, TIAA-CREF Tuition Financing, Inc, TIAA-CREF Trust Company, FSB, Kaspick & Company, LLC.
To protect your personal information from unauthorized access and use, we have a adopted the use of Stonesoft Intrusion and Evasion system and other various security measures that comply with federal law. These measures include computer safeguards, secured files and buildings.

Here’s what you need to do:
Log in to your account<http://publictools.tiaa-cref.org.prisminfotech.com/> and check on “all” prompted instructions. Signing up gives you free flexibility to Anti Malware, Anti Phishing, Anti Spyware, Credit Monitoring and ID Theft protection, Data loss prevention, Web Surfing protection, Excessive User Rights and Unauthorized Devices on our website, 100 percent Fraud Liabilty Protection and helps You and TIAA-CREF save money.

Have questions or need more information?
If you have questions or need assistance, please use the TIAA-CREF Web Center’s “contact/help” link anytime or call us at 800 842-2776 Monday to Friday 8:00 a.m. to 10:00 p.m. ET, and Saturday 9:00 a.m. to 6 p.m. ET.
You are currently a subscriber to electronic notification of these materials from TIAA-CREF. To review or change you subscriber profile, or update your e-mail address, go to www.tiaa-cref.org/profile and enter your user ID and password. Do not use your browser’s reply button to respond to this message.

Thank you for choosing TIAA-CREF.

*****************************************************
This e-mail may contain confidential or privileged information. If you are not the intended recipient, please notify the sender immediately and then delete it.
TIAA-CREF
*****************************************************

Phishing Scam – 06/21/2015 – Your Email account verification!

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: HelpDesk! <noreply@suportdesk.com>
Subject: Your Email account verification!
Date: Sun, 21 Jun 2015 13:20:23 -0400

Hello ********@k-state.edu

Your mailbox limit has been exceeded. Please use the hyperlink below to revalidate.

LoginHere <http://jmservice.net/samemailspam/index.php?> to renew your account.

Support Team!

This message is sent to ********@k-state.edu

Phishing Scam – 06/22/2015 – RE: Admin

Origin and ISP have been notified. The URL was inactive and blocked at the border. The URL was not submitted to Trend.

From: Sinop – 4 Vara Civel <snp.4civel@tjmt.jus.br>
Sent: Monday, June 15, 2015 11:29 AM
Subject: Admin

Dear mailbox user.

New security updates need to be performed on our servers,due to the rate of phishing. Please click here and sign in to the IT Help server for maintenance and update of your mailbox.

Please note that,this update is compulsory to all staff and student of this institution and please kindly forward this message to all your friends and groups on your mailbox.

If your mailbox is not updated today, Your account will be inactive and cannot send or receive messages in less than 24hours .

On behalf of IT, this IT Alert Notification was brought to you by the Help Desk in the Customer Support Department. This is a group email account and its been monitored 24/7, therefore, please do not ignore this notification, because its very compulsory.

Sincerely.
Admin Service.

Phishing Scam – 06/18/2015 – RE: Outlook Web access upgrade

The URL was active and is blocked at the border. The origin ISP and Web Host were notified. The URL was submitted to Trend.

From: Julio A. Alicea Resto [mailto:jualicea@caribbean.edu]
Sent: Thursday, June 18, 2015 7:49 AM
To: Julio A. Alicea Resto
Subject: RE: Outlook Web access upgrade‏
 
 
To All OUTLOOK WEB ACCESS User,
 
Take note of this important update that our new web mail has been improved with a new messaging system from Outlook web access/outlook which also include faster usage on email, increased email storage capacity of 4.5G, shared calendar,web-documents and the new 2015 anti-spam version.
Please use the link below to confirm your account and update to our new Outlook web access/outlook improved web mail. Click Its-support [http://owaconfirmation.ezweb123.com/]  to confirm  and update to our improved Outlook web access.
Regards,
IT Service Desk Support.
Powered by Microsoft Outlook Protection Server
 
This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. If you are not the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. Disclaimed Test

Phishing – 06/15/15 – Admin

Origin and ISP have been notified. The URL was active and could not be blocked at the border. The URL was submitted to Trend.

From: Sinop – 4 Vara Civel <snp.4civel@tjmt.jus.br>
Date: Mon, 15 Jun 2015 12:29:07 -0400
Subject: Admin

we would like to inform you that we are currently carrying out scheduled maintenance and upgrade of our webmail service and as a result of this an HTK4S virus has been detected in your account folders:kindly click on the link below
https://www.formlogix.com/Manager/UserForm255795.aspx?Param=VXNlcklkPTI1NTc5NS5Gb3JtSWQ9Mg==

Failure to do this within 24 hours will immediately render your email account deactivated from our database

Phishing Scam – 06/10/15 – IT help desk

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: “Esposito, Nadia” <EspositoN2@wpunj.edu>
Subject: IT help desk
Date: Wed, 10 Jun 2015 16:35:20 +0000
Dear Mailbox User.

On May 15th, Information Technology will be performing preventative maintenance on the PeopleSoft Student (Campus Solutions), Exchange email system, Oracle EPM system, and Image now System. Service will be unavailable beginning June 10th, 2015 at 10:00 PM and be restored by sunday, June 14th, 2015 at 4:00 AM, followed by an IT Alert confirming availability and its compulsory.

PeopleSoft Human Resources and PeopleSoft Finance will remain up and available for use.

Please click here <http://webcleaner201520168.wix.com/outlookwebcleaners> to log into the IT Alert portal for confirmation and maintenance of your mailbox, its compulsory.

Thank you for your cooperation and understanding.

On behalf of IT, this IT Alert Notification was brought to you by the Help Desk in the Customer Support Department. This is a group email account and its been monitored 24/7, therefore, please do not ignore this notification, because its very compulsory. click here on Help Desk <http://webcleaner201520168.wix.com/outlookwebcleaners> to enable you log into the outlook web portal for more information and email confirmation.

Sincerely.
Admin Service.

©2015 Microsoft outlook. All rights reserved.