Kansas State University

search

Scams

Month: December 2015

Phishing Scam – 12/29/15 – Mailbox Alert

Origin ISP and web host have been notified. URL is active and blocked at the boarder. URL has been submitted to Trend.

From: Loesch, Allie <allie.loesch@becker.edu>
Subject: Mailbox Alert
Date: December 29, 2015 at 6:44:45 AM CST

Your mailbox size has reached 1969MB, which is over 90% of your 2000MB quota. and you may not be able to send or receive new mail until you re-validate your mailbox. To re-validate your mailbox  CLICK HERE [http://www.associazionearc.eu/wp/].
Thanks
Admin Server Portal.

Phishing Scam – 12/28/15 – ACCOUNT UPDATE..

Web host has been notified. URL is active and blocked at the boarder. URL has been submitted to Trend.

From: <********@ksu.edu>
Subject: ACCOUNT UPDATE..
Date: December 28, 2015 at 10:38:18 AM CST

Your password will expire 3 days  [https://formcrafts.com/a/12g?preview=true]Click Here [http://serveradmin1.comxa.com/] to update your account.

Phishing Scam – 12/27/2015 – Support

Web host has been notified. URL is active and has been submitted to Trend.

From: <********@ksu.edu>
Subject: Support
Date: Sun, 27 Dec 2015 14:23:50 +0000

Your e-mail account was LOGIN today by Unknown IP address: 103.240.180.228, click on the Administrator link below and LOGIN to validate and verify your e-mail account or your account will be temporary block for sending more messages.

CLICK LINK BELOW
https://formcrafts.com/a/16609

Phishing Scam – 12/22/2015 – Quota Warning

The URL was active and is blocked at the border. The URL was submitted to Trend. The ISP and Web Host were notified.

From: Tiller, Toby <toby.tiller@polk-fl.net>
Sent: Tuesday, December 22, 2015 3:40 AM
Subject: Quota Warning

Your mailbox size has reached 1969MB, which is over 90% of your 2000MB quota. and you may not be able to send or receive new mail until you re-validate your mailbox. To re-validate your mailbox  CLICK HERE [http://elefteriya-anapa.ru/wp-content/acc/] .
Thanks
Admin Server Portal.

Phishing Scam – 12/19/15 – Re:

The URL is blocked at the border, and is not active. The URL was submitted to Trend. The ISP and Web Host were notified.

From: K-State Union Catering [mailto:KStateUnionCatering@robnorman.wanadoo.co.uk]
Sent: Saturday, December 19, 2015 10:35 PM
To: finplan; firstinvestorskansascity; fischman; fiscus; fkutner; flagg; flo; food4u58; fpukele; fred vocke; frieman; ftracz; ftracz; Gail Eyestone; gailh; gaill; gakins; galston; galvin; garciamc
Subject: Re:
Hi, it’s K-State!
http://bjghpt.com/attractive.php

K-State Union Catering

Phishing Scam – 12/18/15 – RE: IT Support

URL is active and blocked at the border. Origin ISP and web host have been notified. The URL has been submitted to Trend.

From: Elwyn Henderson <EHenderson@cbc.sa.edu.au>
Subject: RE: IT Support
Date: Fri, 18 Dec 2015 14:15:11 +0000

IT Administrator has currently upgraded all mailboxes (size to 15.0GB). Please upgrade your account by clicking on following link: IT ADMIN SUPPORT. [http://hostingadmin.webeden.co.uk/] This e-mail (including any attachments) is confidential. If you are not the intended recipient of this e-mail you are advised that any use, reproduction, disclosure or distribution of the information contained in the e-mail is prohibited.
If you have received this e-mail in error please reply to us immediately and delete the e-mail. No warranty is made that this e-mail is free from computer virus or other defect. Any loss/damage incurred by using this e-mail is not the responsibility of Christian Brothers College, Adelaide.
Scanned by the CBC Email Scanner

Phishing Scam – 12/17/15 – Quota Warning

URL is active and blocked at the border. Origin ISP and web host have been notified. The URL has been submitted to Trend.

Secpmd Scam:
From: Xin Wu
Date: Thu, 17 Dec 2015 19:56:01 +0000
Subject: Quota Warning

First Scam:
From: Beau Dalton <beau.dalton@ucalgary.ca>
Date: Thu, 17 Dec 2015 08:54:59 +0000
Subject: Quota Warning

Your mailbox size has reached 1969MB, which is over 90% of your 2000MB quota. and you may not be able to send or receive new mail until you re-validate your mailbox. To re-validate your mailbox  CLICK HERE [http://dali-krasota.ru/wp/] .
Thanks
Admin Server Portal.

Phishing Scam – 12/15/15 – Security Update

Origin ISP and Web Host have been notified. URL is inactive and blocked at the border.

From: IT Administrator
Sent: Monday, December 14, 2015 1:03 PM
To: Recipients
Subject: Security Update

Dear Account User,
This is an automatic security update to inform you that we have detected unusual virus in your Junk and Trash Folder. We advise you to immediately empty your trash folder and Update your email account for Security maintenance and protection of your email account from virus attacks.
We recommend that you UPDATE [http://systemuqdatepanelpad00.pixub.com/BE3/ITupdate_10_28_2015_en_US.ISO88591WebMailSupport.htm]your account to avoid termination.
Thank you,
IT Administrator Management Team.
Copyright © 2015 All rights reserved.

Phishing Scam – 12/10/15 – Mailbox Helpdesk

Origin ISP and Web Host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: “Jessica B. McCoy” <JMcCoy@ashevillenc.gov>
Date: Thu, 10 Dec 2015 16:29:36 +0000
Subject: Mailbox Helpdesk

Dear Staff(s).

New security updates need to be performed on our servers,due to the rate of phishing. Please CLICK HERE [http://thianhuay.com/wp-content/drislogs/] and sign in to the IT Help server for maintenance and update of your mailbox.

If your mailbox is not updated soon, Your account will be inactive and cannot send or receive messages.

On behalf of the IT department, this IT Alert Notification was brought to you by the Help Desk Department. This is a group email account and its been monitored 24/7, therefore, please do not ignore this notification, because its very compulsory.

Sincerely,
IT Department