"er" Phish

 

LSU Personnel started receiving a phishing e-mail on February 6th and 7th, 2017 related to LSU Mail.

Subject of the Phishing e-mail - er

Sender Name - An Internal LSU User

Sender e-mail address - Internal to LSU*

*Internal accounts can be compromised and used by malicious actors to send phishing e-mails, in order to appear more authentic.

The content of the message states the following (Links and other descriptors have been removed for security purposes):

Dear Email Account User,

Your Email Account has exceeded it’s storage Limit,
Most incoming messages may be placed on pending due to our recent Upgrade.
Verify your Email account immediately to get your Account Storage Upgraded.
if not verified within 24 hours, we shall delete all your Email Account incoming messages.

Please Visit our Verification Center: GO-Verification-PAGE

to update your account, and continue with email upgrade.

Thanks
UNIVERSITY MAIL ADMIN.


The URL provided in the e-mail is not LSU's and directs the user to a third-party site. 

NOTE: ALWAYS verify the URL provided in the e-mail and please note that LSU will not ask you to verify your accounts in such a fashion.