"VERIFY" Phish

 

LSU Personnel started receiving a phishing e-mail on February 6th, 2017 related to LSU Mail.

Subject of the Phishing e-mail - VERIFY

Sender Name - An Internal LSU User

Sender e-mail address - Internal to LSU*

*Internal accounts can be compromised and used by malicious actors to send phishing e-mails, in order to appear more authentic.

The content of the message states the following (Links and other descriptors have been removed for security purposes):

We temporarily locked your  LSU-MAIL account from sending messages, Our system has detected an unusual virus and sign in attempt into your  lsu.edu mail box account, We recommend you to  [ CLICK HERE ] and verify your  lsu.edu mail account and always exit your  lsu.edu account using the Logout button in the upper right corner instead of just closing the tab of your browser. This serves as an additional security measure to prevent unauthorized access to your  LSU mail account.

  

Warm Regards,

Helpdesk Administrator.


The URL provided in the e-mail is not LSU's and directs the user to a third-party site. 

NOTE: ALWAYS verify the URL provided in the e-mail