" " Phish

 

LSU Personnel started receiving phishing e-mails on October 17th 2017 related to account validation.

Subjects of the Phishing e-mail - (Email has no subject), and "User"

Sender Name - Internal to LSU (Multiple Users)

Sender e-mail address - Internal to LSU (Multiple e-mail addresses)

*Internal accounts can be compromised and used by malicious actors to send phishing e-mails, in order to appear more authentic.

Screenshot of phishing e-mail

 Screenshot of Phish Mail

Content of phishing e-mail

The content of the message is (Links and other descriptors have been removed for security purposes):

This is an Email Service Alert from Service Desk. Our latest IP Security upgrades discovered an irregular Login attempts on your email account earlier today from unknown location with this IP: 10.199.212.02. Our limited access security requires you to validate your Email Account ownership. If not your email account will be blocked within 24 hours.

To avoid this problem Click Here

Warning!!! Failure or refusal to update your account within 24 hours of receiving this mail will cause automatic lockout to this account and will lead to deactivation and deletion of account permanently.

Warm Regards,

IT Service Desk

© Copyright Louisiana State University All rights reserved.

Screenshot of phishing site

The URL provided in the e-mail does not belong to LSU, and directs the user to a third-party site. The third party site appears as below:

 Screenshot of Phish Site

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.