"LSU EYE'S RESEARCH UPGRADE" Phish

 

LSU Personnel started receiving a phishing e-mail on February 18th, 2017 related to email deactivation. 

Subject of the Phishing e-mail - LSU EYE'S RESEARCH UPGRADE

Sender Name - Internal LSU User

Sender e-mail address - Internal LSU Address*

*Internal accounts can be compromised and used by malicious actors to send phishing e-mails, in order to appear more authentic.

The content of the message states the following (Links and other descriptors have been removed for security purposes):

Due to High spam/hackers activities going on we're to De-activate some email ID from our database. kindly
 
 follow link Lsu.edu verification update email /a/webmail.php?wsid and verify your email account
 
outlook 365 office center © 2017  All Rights Reserved.

The URL provided in the e-mail does not belong to LSU and directs the user to a third-party site. The third party site looks like below:

Phishing Email

 

NOTE: ALWAYS verify the URL provided in any e-mail and please note that LSU will not ask you to verify your accounts in such a fashion.