"RESTORE QUOTA SPACE" Phish

 

LSU Personnel started receiving phishing e-mails on March 23rd, 2017 related to users reaching the e-mail quota.

Subject of the Phishing e-mail - RESTORE QUOTA SPACE

Sender Name - External User

Sender e-mail address - External Account (@cbtulsa.com)

Screenshot of the phishing email

The content of the message states the following (Links and other descriptors have been removed for security purposes):

Screenshot of the phishing email

Content of the phishing email

Dear User,
System found out that you have used up your Quota space. Click here to expand your inbox for incoming messages immediately.
 
 
Thank you for your patience and cooperation.

_________________

Information Services

Facilities/Operations

Screenshot of the phishing site

The URL provided in the e-mail does not belong to LSU and directs the user to a third-party site. The third party site appears as below. 

 Screenshot of phishing site

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.