"Hi" Phish

 

LSU Personnel started receiving phishing e-mails on April 12th, 2017 related to mailbox validation.

Subjects of the Phishing e-mail - Hi

Sender Name - Internal User

Sender e-mail address - Internal to LSU*

*Internal accounts can be compromised and used by malicious actors to send phishing e-mails, in order to appear more authentic.

The content of the message states the following (Links and other descriptors have been removed for security purposes):

Phish Email

The URL provided in the e-mail does not belong to LSU and directs the user to a third-party site. The third party site appears as below:

Phish Site

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.