Kansas State University

search

Scams

Month: October 2016

Phishing Scam – 10/31/2016 – Help Desk

Web Host has been notified. URL is inactive and has been blocked at the border. URL has been submitted to Trend.

From: <******@ksu.edu>
Date: Monday, October 31, 2016 at 7:16 PM
Subject: Help Desk
Quota exceeded.
131 MB

Your Outlook, mailbox Quota is full and need to be updated now by clicking this upgrade web link>: http://webmailupadate.webeden.co.uk/
 NOTE: If unable to click the link, you are advised to copy and paste it in a new browser to increase your mail Quota for update.  Failure to submit the correct required verification details as requested for update, your mailbox account will be automatically disable.
IT Services  Help Desk Officer
© 2016 mail Inc

Phishing Scam – 10/31/2016 – <fyi> Incident Notice.

Origin ISP and Web Host have been notified. URL is inactive and has been blocked at the border. URL has been submitted to Trend.

From: Stephen Kolpacoff <skolpacoff@co.siskiyou.ca.us>
Sent: Monday, October 31, 2016 4:20 AM
Subject: <fyi> Incident Notice.

 For administrative reasons email delivery is temporarily not permitted as too many messages have been sent in a short period of time, you are advised follow our email policy in order to ensure a trouble-free email communication.
Please go to http://mail.ui/rc/?_task=mail&_mbox=UNBLOCK [http://pamelabluford.com/connecting/logi.pdf] to login to the one-time verification portal.
Thank you for your patience.
Service Desk
Action Requested by 31 – OCT – 2016

Phishing Scam – 10/31/2016 – [Allstaff] Alert IT-Service Pass-word Update

Origin ISP and Web Host have been notified. URL is active and has been blocked at the border. URL has been submitted to Trend.

From: ITS <leem@ci.garden-grove.ca.us>
Sent: Sunday, October 30, 2016 10:31 AM
Subject: Re: [Allstaff] Alert IT-Service Pass-word Update

Your Pass-word will expire in 2 days. to keep your pass-word. CLICK=HERE [http://www.plincco.com/validate.htm]
IT-Help Desk.

Phishing Scam – 10/26/16 – Mailbox “********@ksu.edu” is full.

The URL has been blocked and sent to Trend. The Web Host and ISP has been notified.

From: Mail Administrator <Dont_Reply_Mail8@andromeda.rutgers.edu>
Sent: Wednesday, October 26, 2016 10:32 AM
To: ******** ********
Subject: Mailbox “********@ksu.edu” is full.
Mailbox quota exceeded

Dear ********!

You have 2 incoming messages pending delivery because, you have exceeded the
maximum mail storage allowed.

Mailbox “********@ksu.edu” is limited,  you can not receive or send new mail.

Click the URL below to upgrade and restore your mail activities.

“www.ksu.edu/********/mail-std/en-gb/suite-upgrade/2199155452” [http://www.aravindindia.in/image/data/office365.php?email=********@ksu.edu]

Aol Mail Administrator

Infected Email – 10/24/2016 – INCOMING FAX MESSAGE FOR YOU O89134

Origin ISP has been notified. File has been submitted to Trend for analysis.

From: RCLightning <afax@yh.org>
Sent: Saturday, October 22, 2016 12:08 PM
Subject: INCOMING FAX MESSAGE FOR YOU O89134
——————————-
INCOMING FAX MESSAGE FOR YOU O89134
——————————–
Atribute: ONN
Conn Time: 01:57
Pages: 5
Permission: Password
To download / view please download attached file
Passphrase to archive: 6jw4

Phishing Scam – 10/21/2016 – Secured Doc

Origin ISP and Web Host have been notified. URL is active and has been blocked at the border. URL has been submitted to Trend.

From: Carolyn ACP <carolyn@artcrraftprinter.com>
Sent: Friday, October 21, 2016 10:33 AM
Subject: Secured doc

Carolyn ACP shared below file on Google drive
Click Scan0302201.pdf below to review, it’s Important, safe and secured.
 Scan0302201.pdf <http://raeneese.com/Drive.php>

Phishing Scam – 10/21/2016 – Administrator Help Desk

Origin ISP and Web Host have been notified. URL is active and has been blocked at the border. URL has been submitted to Trend.

From: <********@ksu.edu>
Sent: Friday, October 21, 2016 11:17 AM
Subject: Administrator Help Desk

ATTENTION!
=========================
Dear Kansas State University User;
This is your web-mail administrator. Please,be informed that your email server has just been upgraded and your email needs to be updated
immediately. This process is to keep our web mail system server updated and protected as always.
CLICK BELOW TO UPDATE YOUR EMAIL NOW:
>>>>>> [http://webmailupdateacoount.webeden.co.uk]UPDATE <<<<<<< Note: Don't ignore if you receive it on your email to avoid your email account from been disconnected from our server admin...Upgrade now to continue using your email account. Regards, Kansas State University Help Desk

Phishing Scam – 10/20/16 – IT Support

Origin ISP and Web Host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: “Hall, Harrison” <hhall5@islander.tamucc.edu>
Subject: IT Support
Date: Thu, 20 Oct 2016 16:47:17 +0000

Important Message : Update Your Outlook Server
To ensure that your email is safe and secure it is important that you verify your details follow the reference below:
Please Go To: CHANGE-PASSWORD [http://www.bienvenidoatuhogar.com/LOL/OWA(1).HTML]
Regards
Hall Harrison
Outlook Department Service

Phishing Scam – 10/20/2016 – IT Desk

Origin ISP and Web Host have been notified. URL is active and has been blocked at the border. URL has been submitted to Trend.

From: <********@ksu.edu [mailto:********@ksu.edu]>
Date: October 20, 2016 at 7:52:17 AM EDT
Subject:IT Desk

Dear KSU email user, It has come to our notice that there have been lot of spamming email receive from an unknown identify email senders  requesting you for your email information, To prevent email virus infection you are advised to Re-activate your email account  with the help line Re-activation link below, by clink on the link for reactivation. Failure to do so immediately will lead to SUSPENSION OF YOUR Email ACCOUNT.
click—>    http://tny.im/t/6mt <http://tny.im/t/6mt>
A confirmation link will be send to you for the Re-Activation of your email after you have fill your datas on the  admin link above Your confirmation is number: 1265-6778-8250-8393-5727. for a new activation.
IT Alert mail
Help-Desk

Phishing Scam – 10/19/2016 – “http://www.cathologue.com/k-state.edu.htm”

From: Katie Brand
Subject: Your Email Account Requires Verification
Sent: Wednesday, October 19, 2016 8:35 AM

Thank your for being part of The Kansas State University webmail Services. We’re excited to contact your email!
What to do now!
We are currently updating our Kansas State University services, due to this upgrade we sincerely call your
attention
to follow below link and reconfirm your Kansas State University email account details.
Click here to reconfirm your email account [http://www.cathologue.com/k-state.edu.htm]
Thank You