"On-going security upgrade at LSU" Phish

 

LSU Personnel started receiving phishing e-mails on July 26th, 2017 related to updating information.

Subject of the Phishing e-mail - On-going security upgrade at LSU

Sender Name - External to LSU

Sender e-mail address - External to LSU (appears as noreply@lsu.edu)

Screenshot of phishing e-mail

 Screenshot of Phish Mail

Content of phishing e-mail

The content of the message states the following (Links and other descriptors have been removed for security purposes):

Dear User,

Due to the on-going security upgrade at LSU, all faculty members are required to update their information to the new security system to enable a faster, easier and more secure e-mail experience.

Link

Regards,

2017 Louisiana State University.

Screenshot of phishing site

The URL provided in the e-mail does not belong to LSU, and directs the user to a third-party site, that appears to be very similar to Microsoft's site. The third party site appears as below:

Screenshot of Phish Site

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.