Kansas State University

search

Scams

Phishing Scam – 6/28/17-Important Message

URL is blocked at the border, sent to Trend. Web Host notified.

From: ******* *******
Sent: Wednesday, June 28, 2017 8:56 AM
To: ******* ******* <********@ksu.edu>
Subject: Important Message
Hi,
The password for your K-State eID Account, *********, was recently changed.
If you made this change, you’re all set.
If not, please take these steps to secure your account:
1. Click here [http://tinyurl.com/ycclgojn] to recover your account.
2. Visit your Account Information [http://tinyurl.com/ycclgojn] page to review your account recovery data on file.
Thanks,
Kansas State University
Replies sent to this email address cannot be answered.

Phishing Scam-6/28/17-Mailbox Notification

URL is blocked at the border, sent to Trend. Web Host notified.

From: Mail Administrator [mailto:support@mail-server.com]
Sent: Wednesday, June 28, 2017 8:48 AM
To: ******** ******** <********@ksu.edu>
Subject: Mailbox Notification
Dear *******@ksu.edu
You have reached your E-Mail storage bandwidth limit.
Most of your incoming mails will be placed on hold.
You are required to run a quick verification now.
E-Mail Verification <http://slightlywarped.com/wp-content/vp/Mailbox/webmail.php?email=*******@ksu.edu &.rand=13vqcr8bp0gud&lc=1033&id=64855&mkt=en-us&cbcxt=mai&snsc=1>l;
No further action is required.

Mailbox Administrator

Phishing Scam – 6/28/17-REQUEST: Acct. deletion in progress

URL is blocked at the border, sent to Trend. Web Host notified.

From: K-State Online [mailto:y2@sgrtex.com]
Sent: Wednesday, June 28, 2017 5:50 AM
Subject: REQUEST: Acct. deletion in progress
Dear User,

Our security Experts received your request to delete your account, we will process your request within 3 working days. All features associated with your account will be lost.
Was this you or someone else, If you didn’t make this request, kindly cancel request to continue using our service.

Cancel Request <https://is.gd/wBzAKk>

Thanks for using our Service!
K-state Service,

Phishing Scam – 06/28/17 – Dear abuse@ksu.edu

The URL was sent to Trend. The Web Host was notified.

Dear abuse@ksu.edu,

Our security Experts received your request to delete your account, we will process your request within 3 working days. All features associated with your account will be lost.

Was this you or someone else, If you didn’t make this request, kindly cancel request to continue using our service.

Cancel Request

Thanks for using our Service!
K-state Service,

Phishing Scam – 06/27/17 – Security update

URL is blocked at the border, sent to Trend. Web Host notified.

To All Employees\Staff

Due to recent global cyber-attack, we have been urgently advice by our security expect to date our Payroll System. This update might my cause service disruption to your employee self-service system and delays in processing your next paycheck.

Please confirm your access details to avoid service interruption using the secured Link.

Thank you.

Phishing Scam – 06/27/17 – You’ve new message from Dean of Student Life

URL is blocked at the border, sent to Trend. Web Host notified.

From: ******* *******
Sent: Tuesday, June 27, 2017 1:27 PM
To: ****** ****** <barr@ksu.edu>
Subject: You’ve new message from Dean of Student Life
Importance: High
Hello ******@k-state.edu [mailto:******@k-state.edu],
       You have a new secure message from Dean of Student Life, open message [http://houseofdealsbarbados.com/signin.k-state.edu.html] now.
Note: disregard this message if you have already replied Dr. Bosco.
Regards,
Heather Reed,
Office of Student Life.
Kansas State University

Phishing Scam – 6/27/17-Good Afternoon, Dr. Bosco sent you a secure message.

The URL is blocked at the border and submitted to Trend. The Web Host was notified.

From: ******* *******
Date: June 27, 2017 at 12:15:38 PM CDT
To: ******* *******
Subject:Good Afternoon, Dr. Bosco sent you a secure message.
Reply-To:noreply@k-state.edu [mailto:noreply@k-state.edu]
Good Afternoon *******@k-state.edu [mailto:*******@k-state.edu],
       You have a new secure message from Dr Bosco, open message [http://houseofdealsbarbados.com/signin.k-state.edu.html] now.
Note: disregard this message if you have already replied Dr. Bosco.
Regards,
Vice President for Student Life,
Kansas State University
122 Anderson Hall
Manhattan, KS 66506-0102

Phishing Scam – 06/24/17 – Capital One Important Information

The URL is blocked at the border and submitted to Trend. The Web Host was notified.

From: “Capital One” <*******@ksu.edu>
Subject: Capital One Important Information
Date: June 24, 2017 at 10:55:38 AM PDT
To: *******@pacbell.net

We want you to update your account details as soon as possible.As part of Our Online Security Commitment
Please visit Secure Update Online protection to restore service access.

Thanks for being a Capital Oneź customer.

Phishing Scam – 06/22/17 – You Have {1} New Important Message

The URL is blocked at the border and submitted to Trend. The Web Host was notified.

From: Kansas State University <*******@ksu.edu>
Sent: Thursday, June 22, 2017 1:00 PM
To: ******
Subject: You Have {1} New Important Message
This sender failed our fraud detection checks and may not be who they appear to be. Learn about spoofing [http://aka.ms/LearnAboutSpoofing] Feedback [http://aka.ms/SafetyTipsFeedback]
Dear User,
Sign in to your Kansas State University webmail account to verify your mail to view incoming message.
CLICK HERE TO VERIFY [http://www.key2web.be/gppev/media/com_banners/cloud/forum/main.htm]

Phishing Scam – 06/22/17 – New message: Unauthorization Code You Requested.

The URL is blocked at the border and submitted to Trend. The Web Host was notified.

From: “Chase Online.” <*******@ksu.edu>
Subject: New message: Unauthorization Code You Requested.
Date: June 22, 2017 at 9:02:56 AM PDT
To: gabarker@sbcglobal.net

Dear Chase OnlineSM Customer:

Due to security update on our server, some non-active accounts will be shut down and this requires you to validate your checking/savings account within 24 hours, to keep your account active. kindly click below.

Verify your account information to unlock your account and your online access.

Please Click here to recover your account. .
For Security Purposes, your your account will be limited if this update is not attended to immediately If you do not contact us, certain limitations may be placed on your account.
The message will be available in your Secure Message Center until 06/22/2017..

Sincerely,
Chase Online Banking Team