LSU Personnel started receiving phishing e-mails on August 13th, 2017 related to account verification/update.
Subjects of the Phishing e-mail - NOREPLY@LSU.EDU, Dear User, Email Membership Update.
Sender Name - Internal to LSU
Sender e-mail address - Internal to LSU
*Internal accounts can be compromised and used by malicious actors to send phishing e-mails, in order to appear more authentic.
Screenshot of phishing e-mail
Content of the phishing e-mail
The contents of the messages are (Links and other descriptors have been removed for security purposes):
Email Membership Update
Due to our system update,we urge all Account Users to verify their email by Clicking on Support and verification/update your Louisiana mailbox.
Your account will be verified within 24hours
© 2016, © Louisiana State University. , All Rights Reserved.
Screenshot of the phishing site
The URL provided in the e-mail does not belong to LSU, and directs the user to a third-party site. The third party sites appear as below:
NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.