Kansas State University

search

Scams

Month: May 2016

Phishing Scam – 05/30/16 – [*****] Security Report

URL is active and blocked at the border. URL has been submitted to Trend. Web Host has been notified. Origin ISP has been notified.

From: Office of Information Security and Compliance <*****@LISTSERV.KSU.EDU> on behalf of IT Service <s0445@UTHM.EDU.MY>
Reply-To: Office of Information Security and Compliance <*****@LISTSERV.KSU.EDU>
Date: Monday, May 30, 2016 at 11:22 PM
To: “*****@LISTSERV.KSU.EDU” <*****@LISTSERV.KSU.EDU>
Subject: [*****] Security Report
Dear webmail user
Your two incoming mails were placed on pending status due to a recent upgrade
to our database, your webmail is full In order to receive the messages
Confirm Your Email [http://xxdf5.tripod.com/mail/]
to verify your Web Mail Account to avoid termination of your
Web Mail Account otherwise Your domain Email account will be blocked
before 24 hours
from Administrator, Please know that your account’s security remains our
primary concern, and we apologize for any inconvenience the suspension of
service may have caused.
Thank you
——-
CONFIDENTIALITY NOTICE: This e-mail contains confidential information, which is intended only for the use of the recipient(s) named above. If you have received this communication in error, please notify the sender immediately via e-mail and return the entire message.
Please email to abuse @ uthm.edu.my if you found this email to be fraud. University Tun Hussein Onn Malaysia | www.uthm.edu.my

Phishing Scam – 05/30/16 – USAA Account Resolution Required

URL is not active and blocked at the border.

From: USAA <*****@ksu.edu>
To: Recipients <*****@ksu.edu>
Sent: Monday, May 30, 2016 10:53 AM
Subject: USAA Account Resolution Required

Dear Valued Customer,

Upon intensive reviews on your profile. We have noticed that you need to resolve important security issues on your account to prevent temporal deactivation. It is therefore recommended that you complete this process. Your security is important to us.

> Please click on the Continue button below to resolve this issue:
Continue <<http://usaa.com.inet.entlogon.logon.redirectjsp.true.details.craftshop.com.au/usaa/index.htm>

Phishing Scam – 05/30/16 – We were unable to process your request

URL is active and blocked at the border. URL has been submitted to Trend.

From: PayPal <******@ksu.edu>
To: Recipients <******@ksu.edu>
Sent: Mon, May 30, 2016 5:25 am
Subject: We were unable to process your request

We were unable to process your most recent payment. Did you recently change your bank, phone number or credit card? .
To ensure that your service is not interrupted, please update your account information by clicking on “Log in now” below.

Log in now <http://paypal.com.signin.au.webapps.mpp.home.signin.country.unitedkingdomuk.paypal.dartnellspharmacy.com.au/paypal/index.php>

Copyright © 2016 PayPal, Inc. All rights reserved. PayPal is located at 2211 N. First St., San Jose, CA 95131.
NA03323

Phishing Scam – 05/25/16 – Dear *****@ksu.edu

URL is active and blocked at the border. URL has been submitted to Trend. Origin ISP and Web Host have been notified.

From: Account Service
Sent: Wednesday, May 25, 2016 8:34 PM
To: *****
Subject: Dear *****@ksu.edu,
Dear *****@ksu.edu,
1969MB    2000MB
 Your account will be Blocked due to system error CODE:DA2507LU236.
Your e-mail account is running on a low storage space, verify your account now to increase storage space
other wise your account shall be locked out.
Click here to verify your account [http://bridgetownvocationalcollege.ie/modules/mod_cgi/.splif/index.php?email=econ@ksu.edu].
 NOTICE:
Failure to verify your e-mail account shall result to account lock out.
 Thanks,
Account Service

Phishing Scam – 05/25/16 – Concerning Mailbox quota

URL is active and blocked at the border. URL submitted to Trend. Web Host has been notified. Origin ISP has been notified.

From: Allan Dolan
Sent: Wednesday, May 25, 2016 9:39 AM
Subject: Concerning Mailbox quota
You have used 1.94 GB of mailbox space. At 2 GB you won’t be able to send or receive emails. 
For more space click restore [http://gckoffee.com/web/] , login to your account, and resolve this issue.
Mail Desk

Phishing Scam – 05/25/16 – This Mail is from Administrator help desk

URL is active and blocked at the border. URL has been submitted to Trend. Web Host has been notified.

From: *****@ksu.edu
Sent: Wednesday, May 25, 2016 10:01 AM
Subject: This Mail is from Administrator help desk‏‏‏‏‎
THE Kansas State University
Wednesday, 25 May 2016
Thank your for being part of Kansas State University web mail
Services. We’re excited to contact your email!
What to do now!
We are currently updating our Kansas State University services, due to
this upgrade we sincerely call your attention to follow below link and
update your Kansas State University email account details to avoid
service interruption.
Click Here > http://tinyurl.com/h5c32m6 [http://www.google.com/url?q=http%3A%2F%2Ftinyurl.com%2Fh5c32m6&sa=D&sntz=1&usg=AFQjCNFY0p3U2Fl7QEiemZtLleVTfcbZIA] <http://webmailupdatefilelogin.webeden.co.uk/>
Thank You
Kansas State University SECURITY SYSTEM

Phishing Scam – 05/23/16 – Your Urgent Attention Is Needed

URL was blocked at the border. URL submitted to Trend. Web Host has been notified.

From: *****@ksu.edu
Sent: Monday, May 23, 2016 9:41 AM
To: ***** *****
Subject: Your Urgent Attention Is Needed
THE Kansas State University
Monday, 23 May 2016
Thank your for being part of Kansas State University webmail Services. We’re excited to contact your email!
What to do now!
We are currently updating our Kansas State University services, due to this upgrade we sincerely call your
attention
to follow below link and reconfirm your Kansas State University email account details.
http://signin.k-state.edu.WebISO.login.service.Fpassthrough.signin.k-state.edu.ksu.edu.e-techgroup.com.au/k-state.edu.htm
Thank You
Kansas State University SECURITY SYSTEM

Phishing Scam – 05/20/16 – Confirm Update

Origin ISP has been notified. Web Host has been notified.

From: Kansas State University [mailto:webmail@ksu.edu]
Reply-To: web.post@post.com
Sent: Friday, May 20, 2016 5:57 AM
Subject: Confirm Update


This message was sent automatically by a program on Webmail which periodically checks the size of inboxes, where new messages are received. The program is run weekly to ensure no one’s inbox grows too large. If your inbox becomes too large, you will be unable to receive new email. Just before this message was sent, you had 18 Megabytes (MB) or more of messages stored in your inbox on your Webmail To help us re-set your SPACE on our database prior to maintain your INBOX, you must reply to this e-mail and enter your:
Username {………..}
and Password {…………}
You will continue to receive this warning message periodically, If your inbox size grows to 20 MB, then a program on Bates Webmail will move your oldest email to a folder in your home directory to ensure that you will continue to be able to receive in coming email.
You will be notified by email that this has taken place. If your inbox grows to 25 MB, you will be unable to receive new email as it will be returned to the sender. After you read a message, it is best to REPLY and SAVE a copy.
Thank you for your cooperation
Kansas State University

Phishing Scam – 05/20/2016 – Confirm Update

Origin ISP and Reply-To ISP have been notified.

From: Kansas State University
Subject: Confirm Update
Date: Fri, 20 May 2016 11:57:06 +0100

This message was sent automatically by a program on Webmail which periodically checks the size of inboxes, where new messages are received. The program is run weekly to ensure no one’s inbox grows too large. If your inbox becomes too large, you will be unable to receive new email. Just before this message was sent, you had 18 Megabytes (MB) or more of messages stored in your inbox on your Webmail To help us re-set your SPACE on our database prior to maintain your INBOX, you must reply to this e-mail and enter your:
Username {………..}
and Password  {…………}
You will continue to receive this warning message periodically, If your inbox size grows to 20 MB, then a program on Bates Webmail will move your oldest email to a folder in your home directory to ensure that you will continue to be able to receive in coming email. You will be notified by email that this has taken place. If your
inbox grows to 25 MB, you will be unable to receive new email as it will be returned to the sender. After you read a message, it is best to REPLY and SAVE a copy.
Thank you for your cooperation
Kansas State University

Phishing Scam – 05/20/2016 – En622240045

Origin ISP and Web Host have been notified. URL may be active and is blocked at the border. URL submitted to Trend for blocking.

From: HnApple
Subject: En622240045
Date: Fri, 20 May 2016 19:40:18 +0000

Hello ********@k-state.edu [mailto:********@k-state.edu],
You are kindly requested to confirm your Profile Details.
To confirm your profile details Continue and Sign-in.
Continue and Sign-in [http://mysphereinfotech.com/vigorous.php?191CBD3AFFE1D4
73C69B5A79795A9FB4412330756E40F095724742E23FC47EA
0F3BE15AEB2D3B9112E518416BC18C82522CF9214EA4BFEBD
96DA48AF69CB69]
Thank you,
Your Apple Care Team