"Outlook Web Upgrade" Phish

 

LSU Personnel started receiving a phishing e-mail on February 28th, 2017 related to e-mail update. 

Subjects of the Phishing e-mail - Outlook Web Upgrade

Sender Name - External User

Sender e-mail address - External E-mail address (@emsinet.com)

The content of the message states the following (Links and other descriptors have been removed for security purposes):

Dear Outlook Web User, 

We were still unable to automatically update/Protect your Mailbox as part of our routine Monthly Email Update via the Outlook Web App Server. Kindly do so manually to update to the New 25GB Remote Mailbox Server. Follow the e-grade Link below to manually update your mailbox:

25GIG MAIL SERVER

You will be notified as soon as upgrade is completed.

Thanks for your co-operation.

System Administrator.

Powered by Microsoft Outlook.

The URL provided in the e-mail does not belong to LSU and directs the user to a third-party site. 

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.