"RE:password.manager," Phish

 

LSU Personnel started receiving phishing e-mails on June 28th, 2018, related to password management.

Subject of the Phishing e-mail - RE: password.manager,

Sender Name - External to LSU

Sender e-mail address - External to LSU

Screenshot of phishing e-mail

 Screenshot of Phish Mail

Content of phishing e-mail

The content of the message is (Links and other descriptors have been removed for security purposes):

Your password will expire today,

Please Update your password, open the Password Manager Self-Service site home page at <Link> and Manage your Passwords, and follow the wizard's instructions.we will notify you once we confirm your details are correct.

THANK YOU

Password Manager

Screenshot of phishing site

The URL provided in the e-mail does not belong to LSU, and directs the user to a third-party site. The third party site appears as below:

 Screenshot of Phish Site

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.