"Exchange/Outlook Web Access" Phish

 

LSU Personnel started receiving phishing e-mails on March 21st and 28th, 2017 related to e-mail activation due to email system upgrade.

Subject of the Phishing e-mail - Exchange/Outlook Web Access

Sender Name - External Users

Sender e-mail address - External Accounts (@washco-md.net and @fremontchristian.com)

The content of the message states the following (Links and other descriptors have been removed for security purposes):

The date within the message varies depending on the day the message is received.

Phish Email

The URL provided in the e-mail does not belong to LSU and directs the user to a third-party site. The third party site appears as below. 

The page is similar for the message received on the 28th, except for the URL.

Phish Site

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.