Kansas State University

search

Scams

Month: October 2015

Phishing Scam – 10/30/15 – RE: It(s) Service : Account Update!!

The URL was active and is now blocked at the border. The URL was submitted to Trend. The original ISP and Web Host have been notified.

From: “Chenoy, Rashna” <Rashna.Chenoy@bartshealth.nhs.uk>
To: “Chenoy, Rashna” <Rashna.Chenoy@bartshealth.nhs.uk>
Subject: RE: It(s) Service : Account Update!!

Dear Webmail User,
Your Email Account have been put on-hold by our server,you can no longer send or receive emails,to avoid this kindly click on the link ITS SERVICE to submit your old account for New to enable you to send and receive emails Thank You ITS Service Provider Team The information contained in this message is confidential and is intended for the addressee only. If you have received this message in error or there are any problems, please notify the originator immediately. The unauthorised use, disclosure, copying or alteration of this message is strictly forbidden. This mail and any attachments have been scanned for viruses prior to leaving the Barts Health NHS Trust network. Barts Health NHS Trust will not be liable for direct, special, indirect or consequential damages arising from alteration of the contents of this message by a third party or as a result of any virus being passed on.

Phishing Scam – 10/26/15 – Internet

URL is not active and is blocked at the border. Origin ISP has been notified.

From: “Hendrick, Chelsea, N” <chelsea.hendrick179@topper.wku.edu>
> Date: October 26, 2015 at 6:26:16 PM CDT
> To: “********@k-state.edu” <********@k-state.edu>
> We have safeguarded your account, there is a possibility that someone other than you is attempting to login your account. As part of our ongoing commitment to provide the best protection to all our customer’s security.
>
> We therefore ask you to fill in your online data correctly, in other for us to update the settings in your account, by click or copy past this link on your browser:
>
> http://k-state.jimdo.com/
>
> Your security is our priority.
> Copyright © 2015 All rights reserved
> Division of Information Technology

Phishing Scam – 10/26/15 – Maintenance/Email Activation Notice

URL is active and blocked at the border. Origin ISP and web host have been notified. The URL has been submitted to Trend.

From: Technical Support HelpDesk <tpg@tpg.com.au>
Subject: Maintenance/Email Activation Notice
Date: Tue, 27 Oct 2015 13:19:10 -0700

Dear ********,
In regards to the ongoing maintainance. Some of your important messages were queued on our mail server. Please Click here [http://muoo-org.onlinewebshop.net/pending.php] to view or download your pending messages. Some maintenance may still be undergoing for large improvement updates that will increase our security. Please Note: To avoid any complication, it is madatory you follow the instructions above.
Thank you for your patience and cooperation,
–IT Support Team
 
THIS TRANSMISSION IS INTENDED AND RESTRICTED FOR USE BY ******** [http://muoo-org.onlinewebshop.net/pending.php]; ONLY. IT MAY CONTAIN CONFIDENTIAL AND/OR PRIVILEGED INFORMATION EXEMPT FROM DISCLOSURE UNDER FEDERAL OR STATE LAW. IN THE EVENT SOME OTHER PERSON OR ENTITY RECEIVES THIS TRANSMISSION, SAID RECIPIENT IS HEREBY NOTIFIED THAT ANY DISSEMINATION, DISTRIBUTION, OR DUPLICATION OF THIS TRANSMISSION OR ITS CONTENTS IS PROHIBITED. IF YOU SHOULD RECEIVE THIS TRANSMISSION IN ERROR, PLEASE DELETE THE FILE FROM YOUR SYSTEM, AND DESTROY ANY HARD COPIES OF THIS TRANSMISSION. THANK YOU.

Phishing Scam – 10/22/15 – NTGSI

URL is not active and blocked at the border. Origin ISP has been notified.

From: Stepaniuk, Eleanor [mailto:estepaniuk@ucn.ca]
Sent: Thursday, October 22, 2015 5:39 AM
To: info@mail.com
Subject: NTGSI
 
Important Notice Faculty and Staff 
 
We have upgraded to (4GB Web App E-space) 
Please login to your account to validate E-space. Your 
account is still open for you to send and receive mail.
Click Here [http://tmptp.jimdo.com/]​​​​​ to confirm the details and update.
 
Sincerely, 
Service Account Management Team. 
Thanks for your cooperation. 
Copyright ©2015 IT Center Internet Rights Reserved

Phishing Scam – 10/21/2015 – This is an Email Service Alert from Helpdesk.

URL is active and blocked at the border. Origin ISP and Web Host has been notified. URL was submitted to Trend.

From: HelpDesk <info@helpdesk.com>
Subject: This is an Email Service Alert from Helpdesk.
Date: Wed, 21 Oct 2015 22:36:38 +0200

This is an Email Service Alert from Helpdesk. This is to inform you that your mailbox has exceeds its storage limit, you will be unable to receive and send emails. To re-set your Account Space on our database, prior to maintain your INBOX from 20G to 20.9G. CLICK HERE <http://emailhelpdesk.weebly.com/> to Activate.

Phishing Scam – 10/21/2015 – Upgrade this email account!!! FINAL WARNING!

URL is active and blocked at the border. Origin ISP and Web Host have been notified. URL was submitted to Trend.

From: zimbra mail account <cepp@mail.med.upenn.edu>
Date: Tue, 20 Oct 2015 20:11:14 +0000
Subject: Upgrade this email account!!! FINAL WARNING!

ZimbraCollaborationSuite
You are currently viewing Zimbra in basic HTML.   Why? | Follow the link bellow for faster, better Webmail.
https://mail.login.edu/src/ login.php [http://zm8654356789087654.voici.org/]
Copyright © 2015 Zimbra! Inc. All rights reserved.Copyright/IP Policy | Terms of Service

Phishing Scam – 10/10/2015 – Dear Account Owner

URL is active and blocked at the border. Origin ISP and Web Host have been notified. URL was submitted to Trend.

From: rosenbaum@arcor.de [mailto:rosenbaum@arcor.de]
Date: October 10, 2015 at 9:24:26 AM CDT
Subject: Dear Account Owner

Dear Account Owner
This message was sent by Webmail Security Server concerning a login alert on your Email Account. This recent alert has placed a lock status on your account and needs to be updated by you. Click the link below to update your Account Access
http://chayenneshoes.com/users/ [http://chayenneshoes.com/users/]

Sincerely,
Security Director
Webmail Security Services

Phishing Scam – 10/10/2015 – Mailbox Termination Request

URL is active and blocked at the border. Origin ISP and Web Host have been notified. URL was submitted to Trend.

From: E-mail Validator <webmail-account-service@domain-validator.net>
Date: Sat, 10 Oct 2015 01:31:14 +0300
Subject: Mailbox Termination Request

Hello ********@ksu.edu,
We received your instructions to delete your e-mail account
We will process your request within 24 hours.

All features associated with your account will be lost.

To retain your account, kindly Cancel Request to continue using our services

CANCEL REQUEST IMMEDIATELY [http://vognmandsparken.dk/wp-content/?email=*******@ksu.edu]

Thank You,
E-mail Account Team

Phishing Scam – 10/09/2015 – Mailbox Termination Request

The URL was active and is blocked at the border. The URL was submitted to Trend. The ISP and Web Host were notified.

From: E-mail Validator <webmail-account-service@domain-validator.net>
Sent: Friday, October 9, 2015 5:31 PM
Subject: Mailbox Termination Request

Hello ********@ksu.edu,
We received your instructions to delete your e-mail account
We will process your request within 24 hours.

All features associated with your account will be lost.

To retain your account, kindly Cancel Request to continue using our services

CANCEL REQUEST IMMEDIATELY [http://vognmandsparken.dk/wp-content/?email=********@ksu.edu]

Thank You,
E-mail Account Team
Business Service:

Phishing Scam – 10/09/15 – I.T Notice!!!

URL was active and is blocked at the border. URL was submitted to Trend. The ISP and Web Host were notified.

From: Hongxia Fu [mailto:Hongxia.Fu@asu.edu]
Sent: Friday, October 09, 2015 4:55 AM
Subject: I.T Notice!!!

I.T Notice!!!
An important course form has been posted to you through the staff admin login portal.
Please sign in immediately to view the form.
Click here to sign in: FACULTY/STAFF ONLY [http://passwordreset1.webeden.co.uk/]