Select Page

Latest Phishing Scams

**** Multiple emails have been posted to avoid confusion.  Each example has been separated by ### ****

########################################################################################
From: do_not_reply@zimbra.com <bestseller.hinda@gmail.com>
Date: Fri, Apr 14, 2017 at 9:12 AM
Subject: Urgent Update!!!
To:

Dear Zimbra User,

Someone has login your zimbra account 3 times with incorrect password and
your account will be deleted from our data base in the next 24hrs, if you
are not the one kindly complete and restore your account active.

Kindly CLICK HERE <http://bit.ly/2oyHqCP> to complete the process.

Thanks.
Zimbra Inc.
########################################################################################


-------- Forwarded Message -------- Subject: Re: Campus Security Notofication Date: Wed, 8 Feb 2017 18:06:44 +0000 From: Egla MartinezSalazar <EglaMartinezsalazar@cunet.carleton.ca> To: Hello, Please follow protocol on the secure page as highlighted on the link below. There is a security concern on campus. This message is sent via secured HTML ClickHere <http://endgtrrlimisedfries.info/uclamikeiseeyou>to view. Thanks, Egla MartinezSalazar Campus Security Police. © 2017 University of California, Los Angeles Los Angeles, CA 90095 rights reserved.
########################################################################################

2016/12/06 URGENT NOTICE FROM CAMPUS REGARDING RANSOMWARE:

The email appears to come from office@”department”.ucla.edu where “department” is the name of the unit to which the phishing message is directed.   The subject of the email is “Scanned image from MX2310U@department.ucla.edu” with the unit name similarly substituted.

If you receive this email, do not open any attachments and immediately delete the message. Note that a sample of this email is shown below:

phishing_scam

Email sent to HSSEAS addresses with .zip attachments will not be delivered. Instead the user will receive an email saying that the message has been blocked along with instructions about what to do if you were expecting an email message with an attachment.

#############################################################

SCAMS claiming that your email account needs to be upgraded

###################################################################

 

From: "Knox, George" <george.knox@mountsinai.org>
Date: January 16, 2017 at 3:12:03 AM PST
To: "Knox, George" <george.knox@mountsinai.org>
Subject: RE: IT Service Holp    Desk
 
To All Employees\Staff,
Take note of this important update that our new web mail has been improved
with a new messaging system from Owa/outlook which also include faster usage on email,
shared calendar,web-documents and the new 2016 anti-spam version.
 
Kindly use the link below to complete your 2016 Outlook Webmail User authentication form.
 
CLICK on Outlook Web Access<http://xprs.imcreator.com/free/outlookwebteam4/outlook> to update immediately.
 
 
Regards
IT Service Desk Support
02-2-2015

###################################################################
-------- Original Message --------
Subject: 	IT Service Desk
Date: 	Thu, 8 Dec 2016 04:03:53 -0800
From: 	Elliott, Amanda <aelliott@visalia.k12.ca.us>
To: 	Undisclosed recipients:;

-- 
Due to the recent spam arrest software just installed by the IT Service Desk
you will be required to upgrade your e-mail access point by clicking the 
link below.
Click here or copy to your browser: 
http://thecybersidewalk.com/form/forms/form1.html
IT Service Desk.
###################################################################
Subject: 	RE: UPGRADE
Date: 	Mon, 21 Nov 2016 17:13:33 +0000
From: 	Daniel, Dennise L <dldaniel@atlanta.k12.ga.us>
To: 	Daniel, Dennise L <dldaniel@atlanta.k12.ga.us>

IT Administrator has currently upgraded all mailboxes (size to 20.0GB). 

Please upgrade your account by Simply Click Here To Expand

<http://purewebmail.webeden.co.uk/>

Helpdesk.
###################################################################

 

EMAIL ISSUED BY CAMPUS to Warn of Phishing Being sent:

To the Campus Community:
Be advised there is a Phishing email message being sent throughout UCLA claiming to be from Bruin Alert
and asking you to log-in to confirm your credentials. If you receive the message, please take no action and
immediately delete it.
FYI, the message has a couple of telltale signs to look for when trying to determine the validity of a questionable email:
1.
The email address of the sender is not actually the same as the name of the sender (in this case, it isn’t even a ucla.edu email address).
2.
Very poor grammar and spelling.
A copy of the message is below for your reference. Please feel free to reach out to me with any questions or concerns.
Sincerely,
Michael Story
Interim Chief Information Security Officer
Information Technology Services
——– Original message ——–
From: UCLA Bruin ALert ‹
Date: 6/18/16 5:40 PM (GMT-08:00)
To:
Subject: UCLA Bruin Alert
Dear user;
Because of the recent shooting in school, the school authority has upgraded the email portal of every students and staffs of the school.
You are advice to log-on here to confirm if your login credentials in other to allow the recent upgrade on your device.
The upgrade is been done to beef up our security network technologically.
Regards,
The UCLA Bruin Alert
###################################################################

###############################################################################

General PHISHING SCAMS TO GET YOUR PERSONAL INFORMATION

###############################################################################


-------- Forwarded Message --------
Subject: 	Error in your 2017 W-2 Form
Date: 	Mon, 13 Feb 2017 23:21:24 +0100
From: 	ADP Payroll System <ekoloji@ekolojimarket.com>
Reply-To: 	hwc2@mail2world.com
To: 	Recipients <ekoloji@ekolojimarket.com>

80 Million W-2 Form has been mixed up and some people has been short 
paid by the IRS, If you know you have not filed for your tax by your 
CPA, kindly check the attachment of this email to cross check your W-2 
Form, if you cannot view the attachment send your W-2 Form via email to 
this address: ADP-Payroll@accountant.com <mailto:ADP-Payroll@accountant.com>

We shall rectify the errors in your 2017 W-2, and get back to you in 2-3 
working days,

Thank you.

ADP Payroll System

*Confidentiality Note:*This Email is Intended only for the person or 
entity to Which it is Addressed and May Contain That information is 
privileged, confidential, or otherwise protected from Disclosure 
Dissemination, Distribution or Email or the COPYING of this information 
by anyone other than HEREIN. the intended recipient, or any agent or 
employee responsible for delivering the message to the intended 
recipient, is prohibited. If you have received this email in error, 
please notify us immediately at Telephone No. +9714 7016904 or by return 
email and destroy the original message and all copies thereof. The 
Al-Futtaim Group does not give warranty, express or implied, that this 
email is free from infection by viruses or anything else that has 
contaminating or destructive properties. You should implement virus 
checking procedures before opening this email and any attachments

1 attachments (total 53.9 KB)
###############################################################################