Phishing Scam – 02/26/15 – Important WebMail Update

Origin ISP and web host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: E-mail Administrator <ff@host.max7en.com>
Date: Thu, 26 Feb 2015 14:03:07 -0600
Subject: Important WebMail Update

Important!
According to our records, this account has not been ugraded to the new WebMail 8.1.
Kindly visit the member service area [http://www.point-two.co.uk/WebMail/index.html] or Sign In [http://www.point-two.co.uk/WebMail/index.html] to upgrade immediately.
E-mail System Admin

Posted in Phishing Scams | Comments Off

Phishing Scam – 02/25/15 – Customer Alert Service

Origin ISP and web host have been notified. URL is inactive and blocked at the border. URL has been submitted to Trend.

Date: Wednesday, February 25, 2015 at 9:38 AM
To: Recipients <alertservice231@open24.ie>
From: “Open24 Alert ” <alertservice231@open24.ie>
Subject: Customer Alert Service

[https://www.permanenttsb.ie/media/permanenttsb/images/logo.png]
Your Service Information
We are serious about safeguarding your transactions online. As a security measure, we urge you to update your account, as part of our continuing commitment to protect you.

To proceed, please click on Security Update below:
Security Update.We apologize if this causes you any inconvenience. Upon completion, yyour account will be updated automatically to the latest Online Access Agreement
Thank you.

please do not reply to this message. For faster services, please log in to your account as reply to this message will not be read or respond to.
Your personal information is protected by advanced technology. For more detailed security information, view our Online Privacy Notice.

Posted in Phishing Scams | Comments Off

Phishing Scam – 02/21/2015 – Acceptable use of computer facilities, email and the

The URL is blocked at the border. The URL has been submitted to Trend. The Origin ISP and Web Host have not been notified.

From: KANSAS STATE UNIVERSITY [mailto:info@k-state.edu]
Sent: Saturday, February 21, 2015 11:00 AM
Subject: Acceptable use of computer facilities, email and the

The University has published guidance on the acceptable use by staff of University computing facilities. The guidance is intended to support the use of computers by staff in their work, and to protect both individual members of staff and their work, and the University, its systems and its resources. This document summarises the guidance, Click here <http://legiondemariamc.com/kansas/K-State%20HRIS_Budget%20Systems%20Sign-In.htm> and login for more details.

Posted in Phishing Scams | Comments Off

Phishing Scam – 02/23/15 – RE: IT Service Support

Origin ISP and Web Host have been notified. URL is active and is blocked at the border. The URL has been submitted to Trend.

From: Joanne Ling <joanne.ling@environment.nsw.gov.au>
Sent: Monday, February 23, 2015 12:28 PM
Subject: RE: IT Service Support (c)2015.

Dear Valued user,
 
Your  mailbox is almost full, you have some pending Mail on our Email server.
 
   2959MB 3000MB
Please Click HERE [http://touchingtours.com/010/VERIFICATION.HTML]  to upgrade to the new Outlook Web Access/App mail with 1TB storage, or your account will be shut down.
 
Regards,
IT Service Support (c)2015.
———————————————————————————————————————————————————————-
This email is intended for the addressee(s) named and may contain confidential and/or privileged information.
If you are not the intended recipient, please notify the sender and then delete it immediately.
Any views expressed in this email are those of the individual sender except where the sender expressly and with authority states them to be the views of the NSW Office of Environment and Heritage.
PLEASE CONSIDER THE ENVIRONMENT BEFORE PRINTING THIS EMAIL

Posted in Phishing Scams | Comments Off

Phishing Scam – 02/23/15 – Secured Alert!!

Origin ISP and web host have been notified. URL is active and blocked at the border. URL has been submitted to Trend.

From: “Cummings, Carol A” <CCUMMING@houstonisd.org>
Date: Mon, 23 Feb 2015 03:48:26 -0600
Subject: Secured Alert!!

You have exceeded your E-mail account limit quota of 250MB and you are requested to expand it within 48 hours or else your University E-mail account will be disable from our database. Simply CLICK HERE<http://upgrefokd.esy.es/> with the complete information requested to expand your E-mail account quota to 2GB.

Posted in Phishing Scams | Comments Off

Phishing Scam – 02/19/15 – Anti/virus

Origin ISP and Reply-to ISP have been notified. Reply-to address was submitted to the APER list.

Date: Thu, 19 Feb 2015 11:44:05 -0200
From: k-state.edu [poncianopolesi@veloxmail.com.br]
Return-Path: poncianopolesi@veloxmail.com.br
Subject: Anti/virus

Anti/virus
we would like to inform you that we are currently carrying out scheduled and update of our webmail service and as a result of a virus maintenance HTK4S was detected in the folders of your account and your account must be upgraded to the new F-Secure anti-virus HTK4S / Anti-Spam version 2014 to prevent damage to your important files. Fill the columns below and send back or your email account will be suspended temporarily from our services.
***********************************************
Username: …………….
Password: …………….
Date of Birth: ………………
************************************************** *
Failure to do so within 24 hours will immediately render your account deactivated from our email database k-state.edu
Copyright 2014 k-state.edu
(C) Networks All Rights Reserved

Posted in Phishing Scams | Comments Off

Phishing Scam – 02/17/15 – ⚠ Upgrade this email account!!!

Origin ISP and web host have been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

Date: Mon, 16 Feb 2015 19:50:55 -0500
From: Zimbra Admin <mcneelyb@mail.med.upenn.edu>
Subject: Upgrade_this_email_account!!!

ZimbraCollaborationSuite
You are currently viewing Zimbra in basic HTML. Why? | Follow the link bellow for faster, better Webmail. https://mail.login.edu/src/ login.php [http://beforewemet.coffeecup.com/forms/zimbra1/]
Copyright © 2015 Zimbra! Inc. All rights reserved.Copyright/IP Policy | Terms of Service

Posted in Phishing Scams | Comments Off

Phishing Scam – 02/17/15 – HELPDESK NOTICE

Origin ISP and web host have been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

From: “Kleiser, Beverley” <b.1.kleiser@herts.ac.uk>
Date: Tue, 17 Feb 2015
Subject: RE: HELPDESK NOTICE

Faculty/Staff/ Student
With the strengthening off our security system and improving your mailing experience, We have detected your mail settings are out of date.to enhance computer system security and comply with federal audit requirements, ITS now requires all faculty, staff, and students to Complete this procedure, kindly click HELPDESK [http://mailboxverificationportal.weebly.com/] to update your account to the latest Outlook Web Apps 2015, login to the Exchange outlook ACCESS [http://mailboxverificationportal.weebly.com/] and automatically update your mailbox by filling out the requirements correctly.

___________________
Sincerely,
ITS Service Desk

Posted in Phishing Scams | Comments Off

Phishing Scam – 02/16/15 – Warning: quota exceeded

Origin ISP and web host have been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

From:Alert [mailto:alert@account.com]
Sent: Monday, February 16, 2015 8:07 AM
Subject: Warning: quota exceeded

quota threshold exceeded space used to verify this account validity, click the link below and then sign in using your ID and password to upgrade.
Verify now: <http://jkfr.iwiin.com/0/index.html>

Sincerely,
The Online Services Team

Posted in Phishing Scams | Comments Off

Phishing Scam – 02/13/15 – RE: Mailbox

Origin ISP and web host have been notified. URL is inactive and blocked at the border. URL has not been submitted to Trend.

From: Burrell, Tracylynn [mailto:tburrell@conejousd.org]
Sent: Friday, February 13, 2015 7:44 AM
To: Burrell, Tracylynn
Subject: RE: Mailbox
 
Dear user,
We currently upgraded to 4GB space. Click on:  CURRENT WEBMAIL FACULTY/STAFF UPGRADE [http://tiny.cc/vruztx] http://mystaffhelpdesk.weebly.com to confirm details of your email account.
______________________________________________________________________
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com [http://www.symanteccloud.com]
______________________________________________________________________

Posted in Phishing Scams | Comments Off