Kansas State University

search

Scams

Phishing Scam – 8/22/2017 – Account Re-Validating

The URL is blocked at the border, sent to Trend. Web Host still needs to be notified as we have not received a forwarded copy with proper headers to inspect.

From: ********
Sent: Monday, August 21, 2017 9:18 AM
Subject: Account Re-Validate

This is to notify all Student of Kansas State University. that we are validating active accounts.Kindly confirm that your account is still in use by clicking the validation link below:
Validate Email Account [https://ecuspeed.net/wp-admin/js/ayzo/office/index.html]
Sincerely
IT Help Desk
Office of Information Technology
Kansas State University

Phishing Scam-8/22/17

The URL is blocked at the border, sent to Trend. The Web Host was notified.

From: 365 Team
Sent: Tuesday, August 22, 2017 11:31 AM
To: ******** *********
Subject: ********@ksu.edu You have pending mails
Hi *********
Some of your mails are pending because you have used 98% of your storage.
Please download and save new configuration for **********@ksu.edu to add more space.
Greetings
[ [http://darwinpim.com/][-Domain-]] Verification Center.

Phishing Scam – 8/22/17-Invoice number 114185355 issue

The URL is blocked at the border, sent to Trend. The Web Host was notified.

—–Original Message—–
From: *********@ [mailto:ksu.edu sarah@devonbuildingsupplies.com]
Sent: Monday, August 21, 2017 5:57 AM
To: ******** *********
Subject: Invoice number 114185355 issue
Hello ******** *********,

I’ve tried to call you but couldn’t get thought. Need to know the status of this invoice I’ve sent to you a while ago. provided a copy below.
http://pocketmex.com/Invoice-2716/
Sincerely,*********@ksu.edu

Phishing Scam – 08/21/17 – Your mailbox is almost full 90%

The URL is blocked at the border, sent to Trend. The Web Host was notified.

From: Robert Mark
Subject: Your mailbox is almost full 90%
Date: August 21, 2017 at 1:20:22 PM CDT
Your mailbox on our server is using more than 90% of the allotted Storage quota. 
Please “click here [http://update-ksu-edu.weebly.com/]” to validate your mailbox through our Secured Portal to update 
your mail storage.
NOTE: You will not be able to send messages at full storage capacity so update your
mail  storage now.
System Administrator.

Phishing Scam-8/21/17-Account Re-Validate

The URL is blocked at the border, sent to Trend. The Web Host was notified.

From: Ross Niehues
Sent: Monday, August 21, 2017 9:34 AM
Subject: Account Re-Validate
This is to notify all Student of Kansas State University. that we are validating active accounts.Kindly confirm that your account is still in use by clicking the validation link below:
Validate Email Account [http://bit.ly/2wgV55W]
Sincerely
IT Help Desk
Office of Information Technology
Kansas State University

Phishing Scam – 08/19/17 – Contact him for your ATM card

The below is a phishing scam. Do not reply to this message and delete it from your inbox.

From: UBA ATM DEPARTMENT
Subject: contact him for your ATM card
Date: August 19, 2017 at 3:20:12 PM CDT
To: Undisclosed recipients:;
Reply-To:
Attention: Beneficiary
This is to officially inform you that your email is short listed by the Central Bank Compensation Award Committee setup to compensate the huge losses of the victims of the internet scam/fraud; you are also warned to disengage from future pursuit of unlearned transaction.
However, your Compensation Payment via ATM CARD value at US$5.3M has been accredited and approved in your favor; all that is required of you to redeem your funds is to contact the payment officer  with the official fee of US$90 being for duty stamp/courier/shipment charges.
Contact us as soon as possible through this (email: george.dav321@gmail.com [mailto:george.dav321@gmail.com])
You are hereby advice to re-confirm the below information once again to the payment officer for further proceedings/next line of action.
1. Full Name:
2. Home address:
3. Direct/personal cell number
4. Copy of any valid identification:
5. Your occupation
Below is the payment officer detail:
NAME: George Davis
E-MAIL:george.dav321@gmail.com [mailto:george.dav321@gmail.com]
Yours truly,
Mr John Mba
Secretary

Phishing Scam – 08/17/17 – KSU alert

The URL is blocked at the border, sent to Trend. The Web Host was notified.

From: Kansas State University <ARMBRUMW9249@uwec.edu>
Sent: Thursday, August 17, 2017 7:00 AM
Subject: KSU alert
 Dear User,
 Due to several failed login attempt, your mailbox account has been temporarily suspended.
 Kindly click the website below and follow prompt to restore account.
 http://www.k-state.edu [http://wp.powersoftware.eu/wp/redir.htm]
 Thank you.
Kansas State University.

Phishing Scam – 08/16/17 – Fwd: Fraud Alert- Action Required

The URL is blocked at the border and submitted to Trend.

From: “SunTrust Bank” <******@KSU.EDU>
Date: August 16, 2017 at 12:03:25 PM EDT
To: *******@att.net
Subject: Fraud Alert – Action Required.

Due to security update on our server, some non-active accounts will be shut down and this requires you to validate your account within 24 hours, to keep your account active. kindly click below.

Please Click here to re-activate your SunTrust Bank Online account.

The message will be available in your Secure Message Center until 08/16/2017.

Thank you for being a valued SunTrust client.

Sincerely,

SunTrust Bank Deposit Products Group
SunTrust Bank, N.A., Member FDIC.
© 1999 – 2017 SunTrust Bank. All rights reserved. NMLSR ID 399801

Phishing scam-8/16/17-IT Service help desk

The URL is blocked at the border and submitted to Trend. The Web Host was notified.

From: Brem, Judith [mailto:Judith.Brem@ectorcountyisd.org]
Sent: Tuesday, August 15, 2017 4:29 PM
Subject: IT Service help desk
Your Email password Will Expire In The Next TWO {2} Days, Log On To  ITS DESK-WEBSITE [http://itserviceemailupgrade.sitey.me/]  To Validate Your E-mail And Password, To Avoid Deactivation of Your Email. Thank You.

Phishing Scam – 08/16/17 – EMERGENCY

The URL is blocked at the border and submitted to Trend. The Web Host was notified.

From: ******* *******
Sent: Wednesday, August 16, 2017 5:41 AM
Subject: EMERGENCY
Your Email Access have been restricted, An Attempt has been made to sign-In your account from a new computer, If you do not validate your account within 24 Hours, You will not be able to send or receive new mail until you re-validate your mailbox.prior to maintain your INBOX. CLICK HERE [http://webmail-ksu.myfreesites.net/] to Verify.
Warm Regards,
Webmail Administrator