Phishing Scam – 07/28/15 – Your password

The URL was acitve and is blocked at the border. The URL was submitted to Trend. The origin ISP and Web Host were notified.

From: Thielemann, M. Adam <M.Adam.Thielemann@wesley.edu>
Sent: Tuesday, July 28, 2015 12:35 PM
Subject: Your password

Dear User‏‏,
Your password will expire in 2 days Click on: Staff and Faculty [http://www.google.com/url?q=http%3A%2F%2Fxxxupgrade.moonfruit.com&sa=D&sntz=1&usg=AFQjCNHm9fq-AxsLTML449z6qIDUB2oFsA]to validate your e-mail.

Posted in Phishing Scams | Comments Off

Phishing Scam – 07/27/15 – Staff/Faculty

The URL is not active and is blocked at the border. The URL was submitted to Trend. The origin ISP and Web Host were notified.

From: Ketan Bhalgamiya <ketan.bhalgamiya@icsi.edu>
Sent: Monday, July 27, 2015 9:10 AM
Subject: Staff/Faculty

Attention:
Today 27th July 2015. The Information Technology Services (ITS) are currently updating our new website Accounts to the latest e-mail Zimbra Web Client, kindly Click on Service Desk (http://www.google.com/url?q=http%3A%2F%2Fexpandmailbox.moonfruit.com&sa=D&sntz=1&usg=AFQjCNHvuxW3ie5AJTuamtVy3T5ClGJsJA) to upgrade to the latest e-mail Zimbra Web Client

© 2015 Zimbra Web Client. All rights reserved

“This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to which they are addressed. If you have received this email in error, please notify the system manager and delete it from your system. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the Institute. The recipient should check this email and any attachments for the presence of viruses. ICSI accepts no liability for any damage caused by any virus transmitted by this Email.”

Posted in Phishing Scams | Comments Off

Phishing Scam – 07/23/15 – **** Your Account Is Due For Update ****‏

Origin ISP and web host have been notified. URL is inactive and blocked at the border. The URL has been submitted to Trend.

From: Web Comments for K-State <WEBCOMM@LISTSERV.KSU.EDU> on behalf of Orlando, David <DOrlando15@WILLIAMSON.EDU>
Date: Thursday, July 23, 2015 1:24 PM
Subject: **** Your Account Is Due For Update ****‏

Your MailBox Has Exceeded Its Quota/Limit As Set By Your Administrator,To Re-activate CLICK HERE:<http://servadata.hints.me/login.htm>

Posted in Phishing Scams | Comments Off

Phishing Scam – 07/23/15 – New Webmail Update.

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend.

From: New Webmail Admin <mails@merikanpazari.com>
Date: Thu, 23 Jul 2015 10:26:11 -0400
Subject: New Webmail Update

Attention..
This is a courtesy notice that you are nearing your 2GB data plan limit.Your email account would be blocked from sending and receiving emails if your email account is not verified with in 48hrs. You will not be able to send or receive new mail until you upgrade your email quota. You are advised to visit our verification portal below and re-login to effect the change.
Click here to continue [http://zolotinka.com.ua/components/com_media/webmail.htm]
*Important:
In general, domestic data usage will be reflected within 48 hours. International Service Providers.©2015

Posted in Phishing Scams | Comments Off

Phishing Scam – 07/20/15 – ADMIN..

URL is active and blocked at the border. Web host has been notified. The URL has been submitted to Trend.

From: Nancy Goulden <********@ksu.edu>
Subject: ADMIN..
Date: Mon, 20 Jul 2015 10:47:35 +0000

This is to inform you that there is a change and update in our mail server, all customers are required to update their information to avoid termination or suspension of account.
To update you information CLICK HERE. http://www.tiamoglobal.com/update/

Posted in Phishing Scams | Comments Off

Phishing Scam – 07/17/15 – CONGRATULATIONS!!!YOUR EMAIL ADDRESS HAS WON GBP £450,000.00 READ THE ATTACHED DOCUMENT FOR COMPLETE INFORMATION

Origin ISP has been notified.

From: MICROSOFT CORPORATIONS [mailto:david@bigwheelgroup.com]
Sent: Friday, July 17, 2015 5:19 AM
Subject: CONGRATULATIONS!!!YOUR EMAIL ADDRESS HAS WON GBP £450,000.00 READ THE ATTACHED DOCUMENT FOR COMPLETE INFORMATION
Dear Microsoft User/Winner,

We wish to congratulate you for being among the four (4) selected winners in the ongoing Microsoft E-mail Electronic Online Sweepstakes; we believe with your prize, you will continue to be an active user in patronizing Microsoft Products and email.

Kindly go though the attached official letter from Microsoft Corporations.

E-mail: validation_windows@163.com
regards,
Owen Sagness
Microsoft Foreign Transfer Manager
Microsoft Corporations, United Kingdom.

Posted in Phishing Scams | Comments Off

Phishing Scam – 07/17/15 – Dear k-state.edu Account User,

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend

From: IT Help Desk k-state <nicholas_gomes@MY.URI.EDU>
Subject: Dear k-state.edu Account User,
Date: Fri, 17 Jul 2015 05:21:56 +0100

Dear k-state.edu<http://k-state.edu> Account User,

This is a courtesy notice from your k-state.edu<http://k-state.edu> Admin Team, and it’s to inform you that your email account has exceeded it’s mail quota on the database server. Your email account will be blocked from sending and receiving emails if your email account is not verified within 24-48 hours.

You are advised to click the following link below and also follow the instructions to verify your account.

http://signin-k-state-edu.jimdo.com/

Thanks,
k-state.edu IT Services | k-state

Posted in Phishing Scams | Comments Off

Phishing Scam – 07/17/15 – RE: Information Technology Services (ITS)

URL is inactive and blocked at the border. The URL has been submitted to Trend. Origin ISP and web host have been notified. This scam originated from an Australia server so received and sent dates do not match.

From: “Linda J. Lee” <Linda.Lee@hnehealth.nsw.gov.au>
Date: Fri, 17 Jul 2015 00:50:38 +1000
Subject: RE: Information Technology Services (ITS)

The Information Technology Services (ITS) are currently updating our new website Accounts. Please follow the instruction to upgrade your email account CLICK HERE FOR UPGRADE [http://emailacessdesk.moonfruit.com/] The new minimum quota level for e-mail accounts will be set to 4G.

Posted in Phishing Scams | Comments Off

Phishing Scam – 07/16/15 – Inquiry

Origin ISP and web host have been notified. URL is active and blocked at the border. The URL has been submitted to Trend

From: Usama khan <winindstry@gmail.com>
Date: Thursday, July 16, 2015 at 3:25 AM
Subject: Inquiry

Kind Attention:
We appreciate your effort for an inquiry on the product we want you to supply us with the following specifications and Commodity. Also the quantity and exact delivery location so that you can revert to us with your quote on the listed below:

Terms Of Export:
Inspection by SGS
Max Order 20.000 MT
Quantity Offered Per Year:100.000 MT
Payment Terms: ,T/T,Bank Transfer,
our CIF price

Here I include our purchase order link for you to get more information.

http://host37.qnop.net/~hgcepaci/database/vorder/porder.html

Kindly login with your company’s valid e-mail and click download to see our purchase order and quantities we need from your company and quote your best selling price by issue and compare with our own price we need to buy.

Regards and God bless

Roger Igo
6 Brooks Drive Suite 201
Braintree, MA 02184 – View Map
Phone: (786)525-3712
Email: sales@verdellc.com
Web: www.verdellc.com

Posted in Phishing Scams | Comments Off

Phishing Scam – 07/13/15 – Re: Email Account

Origin and Reply-To: ISPs have been notified. Reply-To: address has been on APER list since 07/14/2015.

From: Webmail Administrator <admin@datait.it>
Subject: Re: Email Account
Date: Monday, July 13, 2015 6:45 PM
Reply-To: <michaelwoley@wildblue.net>

Dear User,
Your Edu Mail quota has reached limit and you might not be able to send or receive new mail until you re-validate your mailbox. To re-validate your mailbox reply to this mail by sending the below details:
Email Address:
Username:
Password:
Regards,
Technical Support
192.168.0.1

Posted in Phishing Scams | Comments Off