"Staff/Employees" Phish

 

LSU Personnel started receiving phishing e-mails on May 11th, 2018, related to increasing the Mailbox size.

Subject of the Phishing e-mail - Staff/Employees

Sender Name - External to LSU

Sender e-mail address - External to LSU

Screenshot of phishing e-mail

 Screenshot of Phish Mail

Content of phishing e-mail

The content of the message is (Links and other descriptors have been removed for security purposes):

Dear Staff/Employees,

  We are migrating all email accounts into  2018 webmail and as such all active Account Holder are to verify and Log in for the upgrade and migration to take effect now. This is done to improve the security and efficiency due to recent Spam mails received.Click on Upgrade Account to migrate and block further Spam mails.


Best Regards,
ITS Help-desk
Office of Information Technology Services (ITS)

Screenshot of phishing site

The URL provided in the e-mail does not belong to LSU, and directs the user to a third-party site. The third party site appears as below:

 Screenshot of Phish Site

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.