From: Administrator <rissa.fabio@vide.vi> <—-Not a Wesleyan address
Reply-To: “noreply@administrator.com” <noreply@administrator.com> <—-Not a Wesleyan address
Date: Tuesday, May 23, 2017 at 11:03 PM
To: “xxx,xxxx” <xxxx@wesleyan.edu>
Subject: your account will be shutdown shortly
Dear xxxx@wesleyan.edu, <—–We would not address a letter to you in this fashion
Our record indicates that you recently made a request to shutdown your email (sripa@wesleyan.edu). And this request will be processed shortly.
If this request was made accidentally and you have no knowledge of it, you are advised to cancel the request now
Your mailbox might be close kindly click Cancel Request to Safeguard your mailbox. <—–Link went to somewhere other than a Wesleyan address
Regards.
Email Administrator
[IMPORTANT] if this letter sent as junk or spam its just an error by our new system, please click not spam or not junk. frequently asked questions. <—–Link went to somewhere other than a Wesleyan address
| Error! Filename not specified. |
Copyright © 2017 Mail Security Inc. All rights reserved. |
Replies sent to this email address cannot be answered. For additional help, please contact us at 1(800) 730-2669. <–Not a Wesleyan phone number
Posted in Security, syndicated-posts
Subject: RE: Action Required, Staff only
All Staff are expected to migrate to the new office365 portal to access the below, Clickhere to Migrate:
· Access the new staff directory
· Access your pay slips and P60s
· Update your ID photo
· E-mail and Calendar Flexibility
· Connect mobile number to e-mail for Voicemail
The link went to a site NOT associated to Wesleyan. The From address was not a Wesleyan address. If you receive this email please, delete it. If you hover over the “Clickhere” link you get a very questionable address that I have modified–
http://office365-928369-staff038migration.010xxxxxxapp.com/
Posted in Security, syndicated-posts
This is a scam alert rather than a Phish as it is looking for you to send money and not hunting for credentials.
From: John Stezaker <johnstezaker@aol.com>
Date: May 13, 2017 at 8:24:37 AM EDT
To: xxxxxx@wesleyan.edu
Subject: Re: Inline Image
I got your application email and approved you to work for me. I hope you will be able to carry out all tasks needed by you. I have few tasks I would like you to complete for me today. Remember your first impression really matter as this is a new employment.
You will make bill payments to suppliers who I pre-ordered some art materials from and need us to meet their depository demands, After which you will purchase some Items at Walmart and mail them to specific orphanage homes we supply kids materials every month. I hope you are not from Walmart, Staples or Office depot.
Your first assignment funds will be sent through your Email(Electronic Bank Check).E-Check is simply a check delivery service that endorse and guarantee check delivery through E-mail instead of waiting for check in the Mail. No stamps, No envelopes, No going to the mail box – Just log in to your e-mail and click a link to download and print the check.
Once the check has been printed it can be deposited immediately. All You will only need to purchase a Business Check Paper for printing of the check, it’s sold for ($23) at any Stationery store’s, Office Depot or Staples or Office Max. I will re-reimburse you for the cost of supplies. Get the Business Check Paper today then email me .
Please Note that you need a Printer OK?. I need you to proceed with the business check paper purchase as soon as you read this email and confirm you are doing that right away.
In order for you to receive your fee, take the payment to your bank and have it DEPOSITED in your bank account for funds to be available . You can also make an ATM deposit or mobile check deposit if it happens your bank is a little but far or bank closes so that the funds can be available the next day to complete the assignment on time. Once funds are Deposited I will send you the Instructions on what you are purchasing at Walmart and bill payments to be completed.
Posted in Security, syndicated-posts
From: Hurtado, Maritza [mailto:hurtadom@CoastalCarolina.edu]
Sent: Wednesday, May 17, 2017 6:42 AM
To: info@mail6.com
Subject: IIGTN
Important Notice Faculty & Staff
We have upgraded to (4GB web E-Space 2017)
Please login to your account to validate E-Space. Your
account is still open for you to send and receive mail.
CLICK HERE to sign in and migrate. <——–hovering over the link–ocus.jimdo.com. Not the same address as the “from” address.
Information Technology Services
Thanks for your cooperation.
Copyright ©2017 IT Center Internet Rights Reserved
Posted in Security, syndicated-posts
From: Dillon Riley via DocuSign [mailto:dse@docus.com]
Sent: Monday, May 15, 2017 12:08 PM
To: wesleyan user <xxxxxx@wesleyan.edu> <—-This was a legitimate Wesleyan employee
Subject: Completed wesleyan.edu – Accounting Invoice 314443 Document Ready for Signature
Posted in Security, syndicated-posts
There is an attachment that goes with this that you should delete. And note the poor grammar and incomplete sentences.
From: Apple Inc. [mailto:asignn-experience29@mail-icloud-manage.com] <—– Not a valid Apple address
Sent: Friday, May 12, 2017 12:06 PM
Subject: Order Confirmation
Recently we made a payment and purchase with a different billing, we inform you that we have locked your Apple ID for security reasons, and will open automatically after you confirm us. download the attachment(PDF) for unlock Apple ID and detail information.
Posted in Security, syndicated-posts
The following Phish has not hit us, yet. However, it is being reported at several colleges and thought it best to make this available before we see examples, here. The link in this picture/screenshot does not go to anywhere in University of Michigan site but to an external site that asks for credentials.
Posted in Security, syndicated-posts
May. 5, 2017 by Karen Warren
6 buildings had their wired connections interrupted after a software problem on their switches this morning:
Admission
Fisk
GLS
Astronomy
Clark
ITS (Exley)
Some buildings are already back online. The rest should be fully restored in 30-45 minutes.
Posted in syndicated-posts, Urgent
This is a slight twist on yesterday’s reported GoogleDoc attack. Please, if you are expect a GoogleDoc from someone then call and verify they sent it to you. Do not just click the link as chances are very high it is the phishing attack and your account and computer will be compromised.
From: Campus Community [mailto:support@list.heug.org]
Sent: Thursday, May 04, 2017 3:07 AM
To: cc.ps@list.heug.org
Subject: [CC.ps] – List Digest, May 03, 2017
The following posts were made on May 03, 2017
- CommGen w/ Checklist Item Description Rich Text – (Margaret Gotter)
- Lauri Enger has shared a document on Google Docs with you – (Pam Lantzy)
Posted in Security, syndicated-posts
From address: Hhhhhhhhhhh@mailinator.com
There is an attachment to the email but PLEASE, DO NOT click it. The attachment runs a script that will in effect, hijack your google account, lock you out of it and make all of your data in your Google Drive vulnerable to reading and theft.
I don’t have an example of an email as we were fortunate enough to miss this one. However, it may still make the rounds to us if the bad guys update their phish and setup new servers.
Please, continue your vigilance of being suspicious of email. Especially, of email with attachments from colleagues or friends from whom you are not expecting anything.
If an email just seems “off” then feel free to submit it to your DSS or security@wesleyan.edu. There it will be checked. If it is found to be Phish it will be neutered and posted for all to see and be made aware of.
Thank you,
Vince Spiars
Posted in Security, syndicated-posts
