Phishing Scam – 05/25/16 – Dear *****@ksu.edu

URL is active and blocked at the border. URL has been submitted to Trend. Origin ISP and Web Host have been notified.

From: Account Service
Sent: Wednesday, May 25, 2016 8:34 PM
To: *****
Subject: Dear *****@ksu.edu,
Dear *****@ksu.edu,
1969MB    2000MB
 Your account will be Blocked due to system error CODE:DA2507LU236.
Your e-mail account is running on a low storage space, verify your account now to increase storage space
other wise your account shall be locked out.
Click here to verify your account [http://bridgetownvocationalcollege.ie/modules/mod_cgi/.splif/index.php?email=econ@ksu.edu].
 NOTICE:
Failure to verify your e-mail account shall result to account lock out.
 Thanks,
Account Service

Posted in Phishing Scams | Comments Off on Phishing Scam – 05/25/16 – Dear *****@ksu.edu

Phishing Scam – 05/25/16 – Concerning Mailbox quota

URL is active and blocked at the border. URL submitted to Trend. Web Host has been notified. Origin ISP has been notified.

From: Allan Dolan
Sent: Wednesday, May 25, 2016 9:39 AM
Subject: Concerning Mailbox quota
You have used 1.94 GB of mailbox space. At 2 GB you won’t be able to send or receive emails. 
For more space click restore [http://gckoffee.com/web/] , login to your account, and resolve this issue.
Mail Desk

Posted in Phishing Scams | Comments Off on Phishing Scam – 05/25/16 – Concerning Mailbox quota

Phishing Scam – 05/25/16 – This Mail is from Administrator help desk

URL is active and blocked at the border. URL has been submitted to Trend. Web Host has been notified.

From: *****@ksu.edu
Sent: Wednesday, May 25, 2016 10:01 AM
Subject: This Mail is from Administrator help desk‏‏‏‏‎
THE Kansas State University
Wednesday, 25 May 2016
Thank your for being part of Kansas State University web mail
Services. We’re excited to contact your email!
What to do now!
We are currently updating our Kansas State University services, due to
this upgrade we sincerely call your attention to follow below link and
update your Kansas State University email account details to avoid
service interruption.
Click Here > http://tinyurl.com/h5c32m6 [http://www.google.com/url?q=http%3A%2F%2Ftinyurl.com%2Fh5c32m6&sa=D&sntz=1&usg=AFQjCNFY0p3U2Fl7QEiemZtLleVTfcbZIA] <http://webmailupdatefilelogin.webeden.co.uk/>
Thank You
Kansas State University SECURITY SYSTEM

Posted in Phishing Scams | Comments Off on Phishing Scam – 05/25/16 – This Mail is from Administrator help desk

Phishing Scam – 05/23/16 – Your Urgent Attention Is Needed

URL was blocked at the border. URL submitted to Trend. Web Host has been notified.

From: *****@ksu.edu
Sent: Monday, May 23, 2016 9:41 AM
To: ***** *****
Subject: Your Urgent Attention Is Needed
THE Kansas State University
Monday, 23 May 2016
Thank your for being part of Kansas State University webmail Services. We’re excited to contact your email!
What to do now!
We are currently updating our Kansas State University services, due to this upgrade we sincerely call your
attention
to follow below link and reconfirm your Kansas State University email account details.
http://signin.k-state.edu.WebISO.login.service.Fpassthrough.signin.k-state.edu.ksu.edu.e-techgroup.com.au/k-state.edu.htm
Thank You
Kansas State University SECURITY SYSTEM

Posted in Phishing Scams | Comments Off on Phishing Scam – 05/23/16 – Your Urgent Attention Is Needed

Phishing Scam – 05/20/16 – Confirm Update

Origin ISP has been notified. Web Host has been notified.

From: Kansas State University [mailto:webmail@ksu.edu]
Reply-To: web.post@post.com
Sent: Friday, May 20, 2016 5:57 AM
Subject: Confirm Update


This message was sent automatically by a program on Webmail which periodically checks the size of inboxes, where new messages are received. The program is run weekly to ensure no one’s inbox grows too large. If your inbox becomes too large, you will be unable to receive new email. Just before this message was sent, you had 18 Megabytes (MB) or more of messages stored in your inbox on your Webmail To help us re-set your SPACE on our database prior to maintain your INBOX, you must reply to this e-mail and enter your:
Username {………..}
and Password {…………}
You will continue to receive this warning message periodically, If your inbox size grows to 20 MB, then a program on Bates Webmail will move your oldest email to a folder in your home directory to ensure that you will continue to be able to receive in coming email.
You will be notified by email that this has taken place. If your inbox grows to 25 MB, you will be unable to receive new email as it will be returned to the sender. After you read a message, it is best to REPLY and SAVE a copy.
Thank you for your cooperation
Kansas State University

Posted in Phishing Scams | Comments Off on Phishing Scam – 05/20/16 – Confirm Update

Phishing Scam – 05/20/2016 – Confirm Update

Origin ISP and Reply-To ISP have been notified.

From: Kansas State University
Subject: Confirm Update
Date: Fri, 20 May 2016 11:57:06 +0100

This message was sent automatically by a program on Webmail which periodically checks the size of inboxes, where new messages are received. The program is run weekly to ensure no one’s inbox grows too large. If your inbox becomes too large, you will be unable to receive new email. Just before this message was sent, you had 18 Megabytes (MB) or more of messages stored in your inbox on your Webmail To help us re-set your SPACE on our database prior to maintain your INBOX, you must reply to this e-mail and enter your:
Username {………..}
and Password  {…………}
You will continue to receive this warning message periodically, If your inbox size grows to 20 MB, then a program on Bates Webmail will move your oldest email to a folder in your home directory to ensure that you will continue to be able to receive in coming email. You will be notified by email that this has taken place. If your
inbox grows to 25 MB, you will be unable to receive new email as it will be returned to the sender. After you read a message, it is best to REPLY and SAVE a copy.
Thank you for your cooperation
Kansas State University

Posted in Phishing Scams | Comments Off on Phishing Scam – 05/20/2016 – Confirm Update

Phishing Scam – 05/20/2016 – En622240045

Origin ISP and Web Host have been notified. URL may be active and is blocked at the border. URL submitted to Trend for blocking.

From: HnApple
Subject: En622240045
Date: Fri, 20 May 2016 19:40:18 +0000

Hello ********@k-state.edu [mailto:********@k-state.edu],
You are kindly requested to confirm your Profile Details.
To confirm your profile details Continue and Sign-in.
Continue and Sign-in [http://mysphereinfotech.com/vigorous.php?191CBD3AFFE1D4
73C69B5A79795A9FB4412330756E40F095724742E23FC47EA
0F3BE15AEB2D3B9112E518416BC18C82522CF9214EA4BFEBD
96DA48AF69CB69]
Thank you,
Your Apple Care Team

                                                               

Posted in Phishing Scams | Comments Off on Phishing Scam – 05/20/2016 – En622240045

Phishing Scam – 05/20/2016 – Administrative Notice

Origin ISP and Reply-To ISP have been notified.

From: tocaos@discapacitadosfisicos.es
Reply-To: help.desk.team.016@tech-center.com
Subject: Administrative Notice
Date: May 20, 2016 at 1:20:13 PM CDT

Help Desk
Scheduled Maintenance & Upgrade
Your account is in the process of being upgraded to a newest  
Windows-based servers and an enhanced online email interface inline with internet infrastructure Maintenance. The new servers will provide better anti-spam and anti-virus functions, along with IMAP Support for mobile devices to enhance your usage.
To ensure that your account is not disrupted but active during and after this upgrade, you are required to kindly confirm your account by stating the details below:
* Domain\user name:
* Password:
This will prompt the upgrade of your account.
Failure to acknowledge the receipt of this notification, might result to a temporary deactivation of your account from our database. Your account shall remain active upon your confirmation of your login details.
During this maintenance window, there may be periods of interruption to email services.  This will include sending and receiving email in Outlook, on webmail, and on mobile devices. Also, if you leave your Mailbox open during the maintenance period, you may be prompted to close and reopen.
We appreciate your patience as this maintenance is performed and we do apologize for any inconveniences caused.
Sincerely,
Customer Care Team
***This message is intended for the use of the individual or entity to which it is addressed, and may contain information that is privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, or the employee or agent responsible for delivering the message to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited.

Posted in Phishing Scams | Comments Off on Phishing Scam – 05/20/2016 – Administrative Notice

Phishing Scam – 5-20-16 – Webmail Update for ********@ksu.edu

Origin ISP and Web Host have been notified. URL is active and blocked at the border. URL is being blocked by Trend.

From: K-State <********@k-state.edu>
Date: Fri, 20 May 2016 08:01:47 -0700
Subject: Webmail Update for ********@ksu.edu

Dear ********@ksu.edu,
Due to high number of inactive accounts on the server, all users are advised to update their account within 48 hours of receiving this notice, using the link below to update their account activity. Use */this link/* <http://babyandcoimport.com.au/k-state/edu.html> to login and update your account activity. Failure to update might process your account as inactive, and you may experience interruption of services or undue errors. Please comply.
Thanks,
IT Help Desk
Kansas State University
http://api.silverchalice.co/sports/logos/ksu/school_logo_large.png

————————————————————————
The information transmitted is intended only for ********@ksu.edu and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any computer.
<https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=emailclient&utm_term=icon>
Virus-free. www.avast.com
<https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=emailclient&utm_term=link>

Posted in Phishing Scams | Comments Off on Phishing Scam – 5-20-16 – Webmail Update for ********@ksu.edu

Phishing Scam – 05/18/16 – Re: PENDING PAYMENT COPY

Origin ISP has been notified.

From: [mailto:*****@LISTSERV.KSU.EDU] On Behalf Of Leslie Nelson
Sent: Wednesday, May 18, 2016 2:03 PM
To: *****@listserv.ksu.edu
Subject: Re: PENDING PAYMENT COPY

Hello
Find the attachment for the copy of the pending payment
Kindly revert back to us as soon as you receive the transfer
With Regards
Miss. Leslie Nelson
Purchase Manager
AllPure Technologies, LLC
80 Progress Avenue
New Oxford, PA 17350. USA
Tel: 717 624-3241
Email: leslie@allpure.com
http://www.allpureinc.com/

Posted in Phishing Scams | Comments Off on Phishing Scam – 05/18/16 – Re: PENDING PAYMENT COPY