Current Security Threats

FOR MORE INFORMATION ON HOW TO HANDLE AND RECOGNIZE A PHISHING ATTEMPT, PLEASE VISIT THE PHISHING INFORMATION PAGE ON THE INFORMATION SECURITY OFFICE WEBSITE AT: WWW.WEBER.EDU/ISO/PHISHING.HTML.

Phishing Attempt (1/29/2016) - IT Service Desk!

From: removed <removed @mvisd.com>
Date: Fri, Jan 29, 2016 at 8:15 AM
Subject: RE: IT Service Desk!
To:

To All Faculty & Staff,

This is to inform you that we are currently upgrading all Mailbox Quota to 50GB inbox space for all Staff/Employee/Faculty and also conducting a General Mailbox Cleanup routine. This is done to improve the security and efficiency due to recent spam mails received.

Click Here <link removed> to verify your Mailbox to Switch to the current Outlook Webmail 2015 with 50GB inbox space.

Please Note That: We will start deactivating unverified and inactive Mailbox Accounts after 24 hours of receiving this message.

Thanks
Help Desk Admin/Cleaup Team.

Phishing Attempt (12/29/2015) - Important Security Alert

From: noreply@weber.edu
Date: Tue, Dec 29, 2015 at 8:36 AM
Subject: Important Security Alert
To:

Our records indicate that your Webmail Account was flagged and has upshot an internal error on our processor.

For security reasons, you must verify the validity of your Webmail account.

You can click here to re-login CLICK HERE <link removed>

Best regards,
Help Desk

Phishing Attempt (11/19/2015) - Help Desk

From: Admin
Date: Thu, Nov 19, 2015 at 1:54 PM
Subject: Help desk
To:

To All Faulty\Staff

We detect your mail has been affected with Virus, and will be shutdown if not validated within 24hours. Please update your mailbox by clicking on following link:

<link removed>

Regards,
IT Service Desk Support.

Phishing Attempt (11/17/2015) - To All

From: <removed>
Sent: Tuesday, November 17, 2015 9:36 AM
To: <removed>
Subject: To All

To All

We currently upgraded our Server to 50GB inbox space. Please log-in to your user account to validate E-space.

Your emails won't be delivered by our server, unless email account is confirmed. protecting your email account is our primary concern, for account update (Web Mail) Click on Outlook Web Access <link removed> should you have any questions please contact the IT Helpdesk.

INSTITUTE OF EDUCATION.
Copyright ©2015 ITS Help Desk

Phishing Attempt (11/17/2015) - Weber.edu Webmail Notification

From: Weber.edu Help Desk
Date: Tue, Nov 17, 2015 at 2:49 PM
Subject: Weber.edu Webmail Notification
To:

Dear User,

To make sure you are always protected, We are currently upgrading our webmail to enhance your data internet security.

Sequel to the new security measure, our records indicate that your webmail was flagged and has upshot an internal error on our processor.

For security reasons, Click on the link below to update and access your webmail http://www.weber.edu/wildcatmail

Best regards,
Weber.edu Webmail Team

Phishing Attempt (11/4/2015) - unusual activity

From:
Date: Wed, Nov 4, 2015 at 1:01 PM
Subject: unusual activity
To:

Dear All,

Kindly check your wellsfargo account through the link below if you are using wellsfargo bank to make sure that your account is not among those that was compromised recently as wellsfargo bank detected unusual activity on their database.

www.wellsfargo.com/verify

--

**Please include your W#**

Phishing Attempt (11/4/2015) - Important Security Alert

From: Weber.edu Alert
Date: Wed, Nov 4, 2015 at 3:17 PM
Subject: Important Security Alert
To:

Our records indicate that your account was flagged and has upshot an internal error on our processor.
For security reasons, you must verify the validity of your web-mail account.

Please click here the link below

https://portalapps.weber.edu/cassso/default.aspx

Phishing Attempt (10/19/2015) - Important Security Alert

From: Weber State University Alert
Date: Mon, Oct 19, 2015 at 9:59 AM
Subject: Important Security Alert
To:

Dear User,

To make sure you are always protected, We are currently upgrading our webmail to enhance your data and internet security.

Sequel to the new security measures, our records indicate that your webmail was flagged and has upshot an internal error on our processor.

For security reasons, Click on the link below to update and access your webmail

http://www.weber.edu/wildcatmail

Best regards

Phishing Attempt (10/19/2015) - ICT Service

From: "removed"
Date: Oct 19, 2015 7:57 AM
Subject: ICT SERVICE
To:
Cc:

Attention: E-mail User,

You have exceeded your E-mail account limit quota of 250MB and you are requested to expand it within 24 hours or else your E-mail account will be disable from our database.

===> CLICK HERE : ICT SERVICE UPGRADE with the complete information requested to expand your Outlook account quota to 1GB.

Thank you for using E-mail services.

©2015 Office Information Center.
All rights reserved.

Phishing Attempt (10/9/2015) - Treat as Urgent

From: "Weber State Career Services"
Date: Oct 9, 2015 7:20 PM
Subject: Treat as Urgent
To:

Dear User,

To make sure you are always protected, We are currently upgrading our webmail to enhance your data and internet security.

Sequel to the new security measures, our records indicate that your webmail was flagged and has upshot an internal error on our processor.

For security reasons, Click on the link below to update and access your webmail

http://www.weber.edu/wildcatmail

Best regards

Phishing Attempt (10/9/2015) - Important Security Alert!

From: Weber Help Desk
Date: Fri, Oct 9, 2015 at 5:00 PM
Subject: Important Security Alert !
To:

Dear User,

To make sure you are always protected, We are currently upgrading our webmail to enhance your data and internet security.

Sequel to the new security measures, our records indicate that your webmail was flagged and has upshot an internal error on our processor.

For security reasons, Click on the link below to update and access your webmail

http://www.weber.edu/wildcatmail

Best regards
Help Desk

Phishing Attempt (10/6/2015) - Weber.edu Webmail Notification

From: Weber.edu Help Desk <removed>@itcsa.net
Date: Tue, Oct 6, 2015 at 12:50 PM
Subject: Weber.edu Webmail Notification
To:

Dear User,

To make sure you are always protected, We are currently upgrading our webmail to enhance your data and internet security.

Sequel to the new security measures, our records indicate that your webmail was flagged and has upshot an internal error on our processor.

For security reasons, Click on the link below to update and access your webmail http://www.weber.edu/wildcatmail

Best regards
Weber.edu Help Desk

Phishing Attempt (9/24/2015) - Suspicious Activity Alert

From: <<removed>@weber.edu>
Date: Thu, Sep 24, 2015 at 11:24 AM
Subject: Suspicious Activity Alert
To:

Dear <removed> ,

We have detected an increase in suspicious network activity and attempts to compromise individual Weber accounts. Please log into your account to verify that your password hasn't been changed, and to check your personal settings in your profile to make sure settings haven't been changed, especially your direct deposit information. If you notice any suspicious activity, please report it immediately.

https://ushesite.net/weber

Thank You.

IT Department

Phishing Attempt (9/1/2015) - WSU Neuroscience Club Share a document with you

From: WSU Neuroscience Club <<removed>@weber.edu>
Date: Tue, Sep 1, 2015 at 5:58 AM
Subject: WSU Neuroscience Club Share a document with you
To:

WSU Neuroscience Club Share a document with you, it's stored online using Drop Box . Click on this link <link removed> Drop Box and access with your email address just to view and read

Sincerely
WSU Neuroscience Club

Phishing Attempt (8/24/2015) - Open to Fill Up The Attached Form

From: Coca-Cola Company <removed>@weber.edu
Date: Mon, Aug 24, 2015 at 12:50 AM
Subject: <Open to Fill Up The Attached Form
To:

Attachment was a document named B.rtf, supposedly from the Great Britain Coca-Cola Award Department.

Phishing Attempt (8/23/2015) - Admin Web Server

From: <removed>@weber.edu
Date: Tue, Aug 18, 2015 at 10:49 AM
Subject: Admin Web Server
To:
Dear: Faculty/Staff/Student,
Your Password will expire in 2 days. Please Click Here <link removed> to update your email account immediately
Webmail Technical Support Helpdesk
219.010.9.3

This email is free from viruses and malware because avast! Antivirus protection is active.

Phishing Attempt (8/18/2015) - Admin Web Server

From: <removed>@weber.edu
Date: Tue, Aug 18, 2015 at 10:49 AM
Subject: Admin Web Server
To:
Dear: Faculty/Staff/Student,
Your Password will expire in 2 days. Please Click Here <link removed> to update your email account immediately
Webmail Technical Support Helpdesk
219.010.9.3

This email is free from viruses and malware because avast! Antivirus protection is active.

Phishing Attempt (6/24/2015) - Alert!!!

From: IT Support Desk <removed>@uni.edu>
Date: Wed, Jun 24, 2015 at 5:36 PM
Subject: Alert!!!
To:


Your Email Access have been restricted, due to several hours of in-activeness on-line. For your e-mail access restoration Please *CLICK HERE* <link removed>


Thanks

Phishing Attempt (6/17/2015) - FACULTY/STAFF ALERT!!!

From: Mabindisa, Nandipha
Sent: Wednesday, June 17, 2015 4:56 PM
To: Mabindisa, Nandipha
Subject: FACULTY/STAFF ALERT!!!

Dear Email User,

Your password Will Expire In The Next TWO {2} Days Current Faculty and Staff Should Please Log On To IT WEBSITE <link removed> To Validate Your E-mail Address And Password,Or Your E-mail Address Will Be Deactivated.Thank You.
ITS help desk
ADMIN TEAM

©Copyright 2015 Microsoft
All Right Reserved.

Phishing Attempt (6/12/2015) - Please confirm activity

From: CHASE FRAUD ALERT
Date: Fri, Jun 12, 2015 at 3:59 PM
Subject: Please confirm activity.
To:

Phishing Attempt (6/11/2015) - VERY IMPORTANT

From: <removed>@weber.edu
Date: Jun 11, 2015 5:27 PM
Subject: VERY IMPORTANT
To: 
Cc: 

 Hi,

I have created a secured shared document using Google Doc

To access this document, please click on  PdfDocument link below and for security reasons, you have to log on with your email to view it, its very important.

PdfDocument <link removed>

Thank You

The link from the email above was a bit.ly link.  This link would have taken you to a page on a server that is not associated with Weber.  Be careful about clicking on these links.  Just going to that site would have infected your computer with malware.

To see where a link would have taken you, hover over the link and verify that is the site you wanted to visit. 

Phishing Attempt (6/8/2015) - PDFfile

From: <removed>@ weber.edu

Date: Mon, Jun 8, 2015 at 1:52 PM
Subject: PDFfile
To: 

Hello,

I have created a secured shared document using Google Doc PDF Reader

To access this document, please click on PDFfile  link below and for security reasons, you have to log on with your email to view it, its very important.

PDF-file <link removed>

Thank You

Phishing Attempt (4/28/2015) - Notification) 

Dear Weber.edu Account User,

This is a courtesy notice from your Weber.edu Admin Team, and it's to inform you that your email account has exceeded it's mail quota on the database server. Your email account will be blocked from sending and receiving emails if your email account is not verified within 24-48 hours.

!!!You are advised to click the following link below and also follow the instructions to verify your account.

http:// systemservicecentr0. wix. com/ weberservice

Sincerely,
Weber.edu IT Service Desk.

Phishing Attempt (3/19/2015) - Faculty and staff mailbox alert!!

---------- Forwarded message ----------
From: <<removed>@louisville.edu>
Date: Thu, Mar 19, 2015 at 9:12 AM
Subject: RE: Faculty and staff mailbox alert!!
To: "Leonard,Melinda A" <<removed>>


From: Leonard,Melinda A
Sent: Thursday, March 19, 2015 10:43 AM
To: <removed>@louisville.edu
Subject: Faculty and staff mailbox alert!!

Your password Will Expire In The Next TWO {2} Days Current Faculty and Staff Should Please Log On To IT WEBSITE <link removed> To Validate Your E-mail Address And Password,Or Your E-mail Address Will Be Deactivated.Thank You.

ITS help desk
ADMIN TEAM
©Copyright 2015 Microsoft
All Right Reserved.

Phishing Attempt (3/19/2015) - Mail Box

---------- Forwarded message ----------
From: "Greta Jeffrey" <<removed>@nwhealth.edu>
Date: Mar 19, 2015 1:39 PM
Subject: Mail Box
To: 
Cc: 

Dear User‏‏,
Please upgrade your mail box Click on: faculty and staff email upgrade <link removed> to validate your e-mail.
 

Phishing Attempt (3/4/2015) - ITS Admininistrative Support

From: MacDonald, Doris

Sent: Wednesday, March 04, 2015 11:19 AM
Subject: ITS Admininistrative Support‏‏
 
 

Dear User‏‏,

Your password will expire within 24hrs Click on: Staff & faculty update <link removed> to validate your e-mail.

______________________________________________________________________

This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com

______________________________________________________________________