"LSU Email Support" Phish


LSU Personnel started receiving a phishing e-mail on February 25th, 2017 related to unblocking email account. The e-mail had two different subject lines, but the content was the same.

Subjects of the Phishing e-mail - LSU Email Support, HELP-DESK

Sender Name - Internal LSU Users

Sender e-mail address - Internal E-mail Addresses* (Multiple Users)

*Internal accounts can be compromised and used by malicious actors to send phishing e-mails, in order to appear more authentic.

Content of the phishing email

The content of the message states the following (Links and other descriptors have been removed for security purposes):

We hereby announce to you that your email account has exceeded its storage limit. You will be unable to send and receive mails and your email account will be deleted from our server. To avoid this problem, you are advised to unblock your email account by clicking here.

Thank you.
LSU Email Support

Screenshot of the phishing site

The URL provided in the e-mail does not belong to LSU and directs the user to a third-party site. The third party site looks similar to below:

Screenshot of phishing site

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you to verify your account or unblock your account in such a fashion.