Kansas State University

search

Scams

Month: July 2016

Phishing Scam – 7/18/16 – Your password Will Expire in 2 Days

Origin ISP and Web Host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: Willie Carter <wcarter@roosevelt.edu>
Subject: Your password Will Expire in 2 Days
Date: Mon, 18 Jul 2016 13:26:31 +0000

This message is from IT Help Desk informing you that your e-mailbox password will soon expire to keep your password active CLICK=HERE [http://sgtjohnadams45.wixsite.com/k-states]and enter your username and password correctly and click on Send immediately to keep password active and updated.

Phishing Scam – 07/14/2016 – This is your email administrator

Origin ISP and Web Host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: Emmelyn Roesner or Dustin Hays
Sent: Thursday, July 14, 2016 8:12 AM
Subject: This is your email administrator
ATTENTION!
=========================

Dear User,
This is your webmail administrator. Please,be informed that the email server has just been upgraded and your email needs to be reset immediately.
This process is to keep the Kansas State University system server updated and protected as always.
CLICK BELOW TO RESET YOUR EMAIL NOW:

Sign In <http://signin.kstate.edu.WebISO.login.service.Fpassthrough.signin.kstate.edu.Dwsignin1.Vyy9Kz0wBsaKYgQqKhLgEcjvtP.icai.com.au/index.htm>

Regards,

Kansas State University.

Phishing Scam – 07/13/2016

Origin ISP and Web Host have been notified. URL is blocked at the border. URL has been submitted to Trend.

From: ******** ********@ksu.edu
Sent: Wednesday, July 13, 2016 12:16 PM
Subject: Support

Your e-mail account was LOGIN today by Unknown IP address, Click on the Administrator link below and LOGIN to validate and Verify your e-mail account or your account will be temporary block for sending more messages.
CLICK LINK BELOW
http://ksu-helpdesk.sitey.me/

Phishing Scam – 7/12/16 – ITS Office

Origin ISP and Web Host have been notified. URL is inactive and blocked at the border. URL was submitted to Trend.

From: “Wang SVD, Shouzhao \”Andrew\”” <swang@DWCI.EDU>
To: “Wang SVD, Shouzhao \”Andrew\”” <swang@DWCI.EDU>
Date: Tue, 12 Jul 2016 09:28:06 -0500
Subject: RE: ITS Office

The Office of IT Infrastructure has upgraded storage access to increase the protection of data assets and system performance Click on: Faculty & Staff Email [http://site9288758.92.webydo.com/] to upgrade storage

Phishing Scam – 07/11/2016 – Subject: hello

Origin ISP and web host have been notified. URL is inactive and blocked at the border. The URL is being blocked by Trend.

Hello!
We are looking for employees working remotely.
My name is Cleo, I am the personnel manager of a large International company.
Most of the work you can do from home, that is, at a distance.
Salary is $2500-$5000.
If you are interested in this offer, please visit Our Site [http://buynow.gr/cli/]
Best regards!

Phishing Scam – 07/07/2016 – new message from faculty admin on DateWithStudent account Profile

Origin ISP and Web Host have been notified. URL is active and blocked at the border. URL is being blocked by Trend.

From: <********@ksu.edu>
Subject: new message from faculty admin on DateWithStudent account Profile
Date: Thursday, July 7, 2016 10:22 AM

Dear user :
Your Admin faculty has left two important course work in your Blackboard area.
Please click below to read your messages
slogin.blackboard.edu/admin/faculty/read/Fv785896578 [http://jdsac.com/jdsalasc/course/mycours.htm]
Note : The link above will be inactive after 10 minutes when mail has been read.
Thanks
Blackboard ITS