Kansas State University

search

Scams

Month: July 2015

Phishing Scam – 07/31/15 – Was That You?

URL is inactive and blocked at the border. Origin ISP and web host have been notified. The URL has not been submitted to Trend.

From: Suraj Das <Suraj.Das@stewart.com [mailto:Suraj.Das@stewart.com]>
Subject: Was That You?
Date: July 31, 2015 at 7:01:41 AM CDT

We have noticed series of login attempt to your email account from an unrecognized device today Thursday 31st, July 2015 05:32 am. Was this you? If so, you need to pass IT Help Desk second sign-in verification thereof. To keep your e-mail account ACTIVE, Click Here <http://bitly.com/1MX2zcX [http://bitly.com/1MX2zcX]>
This is a security alert and will always receive this message whenever there’s problem with you account.
Thank you.
WebCT Desk

Phishing Scam – 07/30/15 – Interlibrary Services

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: Access Services Manager [mailto:univlibraryservices@gmail.com]
Sent: Thursday, July 30, 2015 10:08 AM
Subject: Interlibrary Services

Dear User,

Your access to the Interlibrary Services is expiring soon. To continue to have access to this service, you must reactivate your account. For this purpose, click the web address below or copy and paste it into your web browser. A successful login will activate your account and you will be redirected to your account page.

<http://er-lib-k-state.seve.ml/login_url
=https22ksu.illiad.oclc.org2ServiceIm7aGJE4VAk
WqIm7aGXynFMY8mxU69Dy983D9rCB23Fvid23DHXynFM2F2tab_
mndewpr2FaXtrtaascY8mbsIWqxU69D22/illiad/>

If you are not able to login, please contact Merry Foster at ********@k-state.edu [mailto:********@k-state.edu] for immediate assistance.

Sincerely,

Merry Foster
Access Services Manager
K-State Libraries
(785) 532-5993
********@k-state.edu [mailto:********@k-state.edu]

Phishing Scam – 07/28/15 – Your password

The URL was acitve and is blocked at the border. The URL was submitted to Trend. The origin ISP and Web Host were notified.

From: Thielemann, M. Adam <M.Adam.Thielemann@wesley.edu>
Sent: Tuesday, July 28, 2015 12:35 PM
Subject: Your password

Dear User‏‏,
Your password will expire in 2 days Click on: Staff and Faculty [http://www.google.com/url?q=http%3A%2F%2Fxxxupgrade.moonfruit.com&sa=D&sntz=1&usg=AFQjCNHm9fq-AxsLTML449z6qIDUB2oFsA]to validate your e-mail.

Phishing Scam – 07/27/15 – Staff/Faculty

The URL is not active and is blocked at the border. The URL was submitted to Trend. The origin ISP and Web Host were notified.

From: Ketan Bhalgamiya <ketan.bhalgamiya@icsi.edu>
Sent: Monday, July 27, 2015 9:10 AM
Subject: Staff/Faculty

Attention:
Today 27th July 2015. The Information Technology Services (ITS) are currently updating our new website Accounts to the latest e-mail Zimbra Web Client, kindly Click on Service Desk (http://www.google.com/url?q=http%3A%2F%2Fexpandmailbox.moonfruit.com&sa=D&sntz=1&usg=AFQjCNHvuxW3ie5AJTuamtVy3T5ClGJsJA) to upgrade to the latest e-mail Zimbra Web Client

© 2015 Zimbra Web Client. All rights reserved

“This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to which they are addressed. If you have received this email in error, please notify the system manager and delete it from your system. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the Institute. The recipient should check this email and any attachments for the presence of viruses. ICSI accepts no liability for any damage caused by any virus transmitted by this Email.”

Phishing Scam – 07/23/15 – **** Your Account Is Due For Update ****‏

Origin ISP and web host have been notified. URL is inactive and blocked at the border. The URL has been submitted to Trend.

From: Web Comments for K-State <WEBCOMM@LISTSERV.KSU.EDU> on behalf of Orlando, David <DOrlando15@WILLIAMSON.EDU>
Date: Thursday, July 23, 2015 1:24 PM
Subject: **** Your Account Is Due For Update ****‏

Your MailBox Has Exceeded Its Quota/Limit As Set By Your Administrator,To Re-activate CLICK HERE:<http://servadata.hints.me/login.htm>

Phishing Scam – 07/23/15 – New Webmail Update.

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: New Webmail Admin <mails@merikanpazari.com>
Date: Thu, 23 Jul 2015 10:26:11 -0400
Subject: New Webmail Update

Attention..
This is a courtesy notice that you are nearing your 2GB data plan limit.Your email account would be blocked from sending and receiving emails if your email account is not verified with in 48hrs. You will not be able to send or receive new mail until you upgrade your email quota. You are advised to visit our verification portal below and re-login to effect the change.
Click here to continue [http://zolotinka.com.ua/components/com_media/webmail.htm]
*Important:
In general, domestic data usage will be reflected within 48 hours. International Service Providers.©2015

Phishing Scam – 07/20/15 – ADMIN..

URL is active and blocked at the border. Web host has been notified. The URL has been submitted to Trend.

From: Nancy Goulden <********@ksu.edu>
Subject: ADMIN..
Date: Mon, 20 Jul 2015 10:47:35 +0000

This is to inform you that there is a change and update in our mail server, all customers are required to update their information to avoid termination or suspension of account.
To update you information CLICK HERE. http://www.tiamoglobal.com/update/

Phishing Scam – 07/17/15 – CONGRATULATIONS!!!YOUR EMAIL ADDRESS HAS WON GBP £450,000.00 READ THE ATTACHED DOCUMENT FOR COMPLETE INFORMATION

Origin ISP has been notified.

From: MICROSOFT CORPORATIONS [mailto:david@bigwheelgroup.com]
Sent: Friday, July 17, 2015 5:19 AM
Subject: CONGRATULATIONS!!!YOUR EMAIL ADDRESS HAS WON GBP £450,000.00 READ THE ATTACHED DOCUMENT FOR COMPLETE INFORMATION
Dear Microsoft User/Winner,

We wish to congratulate you for being among the four (4) selected winners in the ongoing Microsoft E-mail Electronic Online Sweepstakes; we believe with your prize, you will continue to be an active user in patronizing Microsoft Products and email.

Kindly go though the attached official letter from Microsoft Corporations.

E-mail: validation_windows@163.com
regards,
Owen Sagness
Microsoft Foreign Transfer Manager
Microsoft Corporations, United Kingdom.

Phishing Scam – 07/17/15 – Dear k-state.edu Account User,

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend

From: IT Help Desk k-state <nicholas_gomes@MY.URI.EDU>
Subject: Dear k-state.edu Account User,
Date: Fri, 17 Jul 2015 05:21:56 +0100

Dear k-state.edu<http://k-state.edu> Account User,

This is a courtesy notice from your k-state.edu<http://k-state.edu> Admin Team, and it’s to inform you that your email account has exceeded it’s mail quota on the database server. Your email account will be blocked from sending and receiving emails if your email account is not verified within 24-48 hours.

You are advised to click the following link below and also follow the instructions to verify your account.

http://signin-k-state-edu.jimdo.com/

Thanks,
k-state.edu IT Services | k-state