"New Message from HR" Phish

 

LSU Personnel started receiving phishing e-mails on May 24th, 2019, related to opening a message in Outlook app.

Subject of the Phishing e-mail - New Message from HR

Sender Name - Internal to LSU*

Sender e-mail address - Internal to LSU*

*Internal accounts can be compromised and used by malicious actors to send phishing e-mails, in order to appear more authentic.

Screenshot of Message
Screenshot of the phishing email

Content of Message

Hello,

You have a new message. open with outlook app to view your message

Sincerely, 

Screenshot of the phishing page

The URL does not belong to LSU and/or Microsoft. 

Screenshot of the phishing site

NOTE: ALWAYS verify the URL provided in any e-mail and PLEASE NOTE that LSU will not ask you for your account information in such a fashion.