"Zimbra Webmail System" Phish

 

LSU Personnel started receiving phishing e-mails on July 7th, 2017 related to restoring email access due to storage limit issues.

Subject of the Phishing e-mail - Zimbra Webmail System

Sender Name - External to LSU

Sender e-mail address - External to LSU

Screenshot of the phishing email

The content of the message states the following (Links and other descriptors have been removed for security purposes):
Screenshot of the phishing email

Content of the phishing email

You have reached the storage limit of your mailbox.

Please visit the link below to restore access to your email.

 

Zimbra Webmail System

Screenshot of the phishing page

The URL provided in the e-mail does not belong to LSU, and directs the user to a third-party site. The third party site appears as below; however, please note that the URL is a legitimate URL of Office.com.

screenshot of the phishing site

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.