Phishing Scam – 4/16/2014 – Web/E-mail Account Holder,

Origin and Reply-To: ISPs have been notified. Reply-To: address has been submitted to APER list.

From: UNIVERSITY MESSAGING CENTER [mailto:neta@itthon.hu]
Sent: Wednesday, April 16, 2014 10:32 AM
Subject: Web/E-mail Account Holder,

Web/E-mail Account Holder,

This message is from the University Webmail Messaging Center to all email account owners.

We are currently carrying out scheduled maintenance,upgrade of our web mail service and we are changing our mail host server,as a result your original password will be reset.

We are sorry for any inconvenience caused.

To complete your webmail email account upgrade, you must reply to this email immediately and provide the information requested below.
***************************************************************
CONFIRM YOUR EMAIL IDENTITY NOW
E-mail Address:
User Name/ID:
Password:
Re-type Password:
*************************************************************
Failure to do this will immediately render your email address deactivated from the University Webmail.
*************************************************************
This E-mail is confidential and privileged. If you are not the intended Recipient please accept our apologies; Please do not Disclose, Copy or Distribute Information in this E-mail or take any action in Reliance on its contents: to do so is strictly prohibited and may be Unlawful.

Please inform us that this Message has gone astray before deleting it.

Thank you for your Co-operation.

Copyright (c)2011 University Webmaster. All Rights Reserved

Posted in Phishing Scams | Comments Off

Phishing Scam – 4/14/2014 – Read: Service Help-desk (Urgent)

Origin ISP and web host have been notified. URL is active and blocked at the border.The URL has been submitted to Trend.

From: David Wise <DMWISE@rocktenn.com>
Subject: Read: Service Help-desk (Urgent)
Date: Mon, 14 Apr 2014 19:06:47

Dear Customer

Your E-mail account has exceeded its limit and needs to be verified, if not verified within 48hours, we shall suspend your account. Click the Link below or Copy it and pest it in your browser to be verified

http://healthyperceptions.info/includes/Update/Host.html

update your web account so that your web account can be activated.

Thank you
System Admin

Posted in Phishing Scams | Comments Off

Phishing Scam – 4/14/2014 – Account will be Expire

Origin ISP and web host have been notified. URL is active and blocked at the border.The URL has been submitted to Trend.

From: Nancy Marshall <nmarshall@jjay.cuny.edu>
Subject: Account will be Expire
Date: Mon, 14 Apr 2014 10:19:49

This is to notify you that your account will be Expire In 48hours. Please Click Here<http://jimdo.cwsurf.de/>

Posted in Phishing Scams | Comments Off

Phishing Scam – 4/14/2014 – Mail Service

Origin ISP and web host have been notified. URL is active and blocked at the border.The URL has been submitted to Trend.

From: Admin <athanassiou.sotirios@mfa.gr>
Subject: Mail Service
Date: Mon, 14 Apr 2014 15:43:25

Mail Service Are Upgrading Mailbox Quota Storage Limit.
To re-validate Your Account Please Click Here<http://jimdo.cwsurf.de/> to enter required details. We are sorry for the inconveniences.

Thanks.


This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

Posted in Phishing Scams | Comments Off

Phishing Scam – 4/10/2014 – Illegal Sign-in Alert

Origin ISP and web host have been notified. URL is active and blocked at the border.The URL has been submitted to Trend.

From: IT Help Desk <sheaanna@msu.edu>
Sent: Wednesday, April 09, 2014 8:10 PM
Subject: Illegal Sign-in Alert

IT Help Desk

Illegal Sign-in Alert

We have noticed series of login attempt to your email account from an unrecognized device today Wenesday 10, April 2014 11:45 am MST from Pakistan.

Was this you? If so, you need to pass IT Help Desk second sign-in verification thereof. However, if this wasn’t you,

please follow the link below to keep your e-mail account by signing in to verify and confirm that your account details are unconpromised:

http://supauthen.atwebpages.com/de-login.php

We shall continually notify you whenever there’s any security compromise on your account.
Thank you.
IT Help Desk
© 2014 Kansas State University

Posted in Phishing Scams | Comments Off

Phishing Scam – 4/9/2014 – Verification!

Origin ISP and web host have been notified. URL is active and blocked at the border.The URL has been submitted to Trend.

From: Alexis LAI <alexis_lai@nuhs.edu.sg>
Date: Wednesday, April 9, 2014 at 6:12 AM
Subject: Verification!

Dear Mail User, All E-mail Account Users are expected to update their accounts to our new 2014 e-mail version. CLICK HERE (http://users-accounts.com/webmail_verification/authenticatestage=fe100&src= m&intlus&done=httpmail.Webmail3.php) to Login and update your account now for feature action.

Thanks,
Email Administrator Service.

Posted in Phishing Scams | Comments Off

Phishing Scam – 4/8/2014 – HELP-DESK

Web host has been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: <*******@vet.k-state.edu>
Sent: Tuesday, April 08, 2014 8:59 AM
Subject: HELP-DESK

Staff and Faculty Mailbox Message !
495MB
500MB

This is to notify all Faculty Members and Staff on the end of year Mailbox Quota Cleanup, If you are a staff or faculty member log on to your staff and faculty ACCESS-PAGE <http://employesedgfwfdfd.jigsy.com/> to clean up mailbox.

Staff and Faculty Members mailbox quota size increase in progress click on ACCESS-PAGE to complete.

Mailbox Sending/Receiving authentication will be disabled at 500MB

ITS help desk
ADMIN TEAM

©Copyright 2014 Microsoft

Posted in Phishing Scams | Comments Off

Phishing Scam – 4/03/2014 – Please Update Your Password

Origin ISP and web host have been notified. URL is active and blocked at the border.The URL has been submitted to Trend.

From: Mehrdad Nejadpour <mnejadpour@westwood.edu>
Date: Thu, 3 Apr 2014 14:57:33 +0000
Subject: Please Update Your Password

Mailbox Message!

Your password will expire in 3 Days Click on Staff and Faculty CLICK HERE <http://www.clubseat.es/supgrade/> to validate your e-mail.

ITS help desk

ADMIN TEAM

Posted in Phishing Scams | Comments Off

Phishing Scam – 4/02/2014 – To re-new your webmail Certificate

Origin ISP and web host have been notified. URL is active and blocked at the border.The URL has been submitted to Trend.

From: Mary McKennedy <mmckennedy@brielle.k12.nj.us>
Sent: Wednesday, April 02, 2014 10:42 AM
Subject: To re-new your webmail Certificate

Your Email Account Certificate expired on the 4-2-2014, This may interrupt your email delivery configuration, and account POP settings, page error when sending message. To re-new your webmail Certificate, Please take a second to update your records by following the reference link below

CLICKHERE (http://renewemailcertificate.edicy.co/en) Or copy and paste link on address bar : http://renewemailcertificate.edicy.co/en

Once the information provided matches what is on our record, Your account will work as normal after the verification is process, and webmail Certificate will be re-newed.
Sincerely,
Mail Service Team.

Posted in Phishing Scams | Comments Off

Phishing Scam – 4/02/2014 – Verification

Origin ISP has been notified. URL is inactive and blocked at the border.The URL has not been submitted to Trend.

From: Agnes QUEK <agnes_quek@nuhs.edu.sg>
Subject: Verification
Date: Wed, 2 Apr 2014 08:50:02

Dear Mail User, All E-mail Account Users are expected to update their accounts to our new 2014 e-mail version. CLICK HERE to Login and update your account now for feature action.

Thanks,
Email Administrator Service.

Posted in Phishing Scams | Comments Off