"Processed Attachment" Phish


LSU Personnel started receiving phishing e-mails on August 28th, 2018, related to review of documents via DocuSign.

Subject of the Phishing e-mail - Processed Attachment

Sender Name - Internal to LSU*

Sender e-mail address - Internal to LSU*

*Internal accounts can be compromised and used by malicious actors to send phishing e-mails, in order to appear more authentic.

Screenshot of the phishing e-mail

 Screenshot of Phish Mail

Content of phishing e-mail

The e-mail contained a PDF attachment with the link. The content of the message is (Links and other descriptors have been removed for security purposes):


How are you ? please verify to review. Feel free to contact me if you have any questions.

We look forward to working with you.


Screenshot of phishing site

The URL provided in the attachment does not belong to LSU or Microsoft and directs the user to a third-party site. The third party site appears as below:

 Screenshot of Phish Site

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.