Latest Email Scams

Below is a collection of real-life phishing examples that IT Security has acted upon and notes on what gives them away as email scams.

  Subscribe to the Email Scams RSS feed

  Follow us on Twitter for the latest Email Scams

From: Silje Modahl Johanson <silje.modahl.johanson@nmbu.no>
Date: 06/23/2016 4:33 PM (GMT-06:00)
Subject: ITS Service Desk Support

Body:

ITS Service Desk Support requires your immediate re-activation of your Email account. This is to upgrade email account to Microsoft Outlook 2016. Inability to complete this procedure will render your account inactivate. Activate by completing the survey procedure. CLICK HERE<http://electro-univers.ro/939393394944/>: to activate. 

Regards, 
IT Service Desk Support 

From: Hallenbeck, Jon <jon.hallenbeck@mainegeneral.org>
Date: Wednesday, June 22, 2016 4:35 PM
Subject: Helpdesk Update

Body:

Your e-mail account was LOGIN today by Unknown IP address Unknown IP 232.22= .88 233,click on the Administrator link below to validate your e-mail accou= nt or your account will be temporary block for sending more messages. Click Link To Validate Your Account <http://nch-elwatania.com/download/About=usData/asp/>

Sincerely,

IT Department

From: Shankar, Shashi (Gurgaon) <Shashi.Shankar@sgs.com>
To: Shankar, Shashi (Gurgaon) &lt;Shashi.Shankar@sgs.com&gt;
Date: Thu, 23 Jun 2016 04:07:10 +0800
Subject: IT Support

Body:

Notice from IT Support, we're updating all staff and student mailbox to new Outlook Web App/Owa for 2016 version. kindly click on IT Support Re-validation<http://ithelpline-facultyowa.my-free.website/> and follow instruction.

Thank you
IT Support

From: Asnaashari, Siamak@ARB
Date: Wednesday, June 22, 2016 8:41 AM
Subject: Ict Services

Body:

IT Administrator has currently upgraded all mailboxes (size to 250.0GB). Please upgrade your account by clicking on faculty&staff <http://ictadminsewrvices.my-free.website>

From: Marta Marques Magalhaes <Marta.Magalhaes@ibmc.up.pt>
Date: Wednesday, June 22, 2016 at 1:36 AM
Subject: Network Identity e-mail adsress at the university

Body:

Hello,

We are pleased to inform you that your Network Identity e-mail adsress at the university is on spam check.

E-mail anti-spam filtering is active. For more information on how toconsult your Spambox or how to deactivate it, please seeFor more information and help, please see the Helpdesk's website and the IMPORTANT SECURITY WARNING HERE NOW AND LOG IN:<http://wwmsncomocidmail.weebly.com/>

 

Have a nice day.

The Computing Centre.

How you know this is a Phishing Scam:

One of the poorer attempts at Weebly phishing recently, it uses a very badly copied Outlook Web Access webpage and refers to "The Computing Centre," something which does not exist at the University of Chicago.

And that atrocious grammar!