Phishing @ LSU

Phishing - /'fiSHiNG/ - Phishing is an attempt by malicious actors pretending to be a legitimate enterprise for the purpose of stealing private information, such as Username and Passwords, Social Security Numbers (SSN), Date of Birth, and Banking information.

LSU IT Security and Policy Team reviews phishing messages received by LSU Community in order to implement preventive security measures for our Campus network.

Is it a phish? Click the image below to learn about common indicators.

 

Would you like to report a suspect e-mail? Follow the instructions in the link below to report it:

Report Phishing e-mails

The IT Security and Policy Team (ITSP) has implemented a phishing reporting tool called Cofense Reporter. The application conveniently integrates directly with Outlook mail clients and Office365, providing LSU Faculty, Staff, and Students a quick and easy mechanism to report phishing e-mails.

For specific instructions on how to utilize Cofense Reporter to report a phishing e-mail to LSU ITSP, please read the following GROK article https://grok.lsu.edu/Article.aspx?articleid=19636.

If Cofense Reporter is not an available option for you, please report phishing messages to LSU ITSP as outlined in the following article https://grok.lsu.edu/Article.aspx?articleid=17107#Reporting.

 

Fallen for a Phish

If you believe you have fallen for a phish, please take the following actions:

• If you accidentally shared your username and password, please change your password immediately. Note: The new password must be unique and should not have been used anywhere else. If you use the same password for different services, you must change passwords for other services as well.
• If you shared your banking (credit card, debit card, bank account, etc.) information, please reach out to your financial institutions.
• If you shared any other personally identifiable information (Social Security Numbers, Date of Birth, etc.), you should take necessary steps to monitor your credit for any unauthorized changes.

 

LSU ITS will NEVER:

• Request that you validate or share your myLSU/PAWS/e-mail account information and password through email.
• Request any of your personally identifiable information, such as SSN, Date-of-Birth, etc. via e-mail.

 

Recent Phishing e-mails

• "Financial Responsibility Agreement" - July 3^rd, 2020

• "Security Update" - June 19^th, 2020

• "Lsu Edu Letter" - June 13^th, 2020

• "LSU - System Administrator/upgrade" - January 22^nd, 2020

• "A Document was sent to you for review" - September 16^th, 2019

• "ACTION REQUIRED 09/06/2019" - September 6^th, 2019

• "Lsu Email Verification Required" - August 19^th, 2019

• "Termination Final Alert for :<Account_Name>, Resolve Now!" - July 16^th, 2019

• "New Message From HR" - May 24^th, 2019

• "LSU Account Migration/Protection Exercise (INC0347429) For" - May 20^th, 2019

• "Important Notification" - February 27^th, 2019

• "Fw: Paper Work." - January 22^nd, 2019

• "Validate Your Email Account....To avoid close down" - October 30^th, 2018

• Multiple subject lines - September 23^rd, 24^th, October 5^th, 8^th, 14^th, 15^th, 18^th, and 21^st, 2018

• "Payroll Schedule Message" - September 26^th, 2018

• "IMPORTANT NOTICE FROM LSU" - September 26^th, 2018

• "IMPORTANT NOTICE FROM LSU" - September 25^th, 2018

• "Action Required!" - September 17^th, 2018

• "WARNING" - September 4^th, 2018

• "Processed Attachment" - August 28^th, 2018

• "Louisiana State University Re-evaluated and Up to Date Computer Acceptable Use Policy For All Employees" - August 16^th, 2018

• "Urgent: Immediate Action Required" - July 23^rd, 2018

• "<A User> as Shared a file with you Using One Drive​"" - July 6^th, 2018

• "Information Technology Services" - July 5^th, 2018

• "RE: password.manager," - June 28^th, 2018

• "Update your Personnel File" - June 19^th, 2018

• "WARNING" - June 8^th, 2018

• "Payroll Schedule 29/05/2018" - May 29^th, 2018

• "***URGENT UPDATE*** PLEASE READ - LSU Employee Strategic Initiative Update From the desk of King Alexander - MAY 22, 2018​" - May 22^nd, 2018

• "Staff/Employees" - May 11^th, 2018

• "RE: System Administrator." - April 30^th, 2018

• "Reset Password In Process" - April 24^th, 2018

• "From IT Help Desk Team" - April 22^nd, 2018

• "Information Technology Supports." - April 18^th, 2018

• "Shared Document" - April 1^st and 2^nd, 2018

• "Ticket ID: #135863000223" - March 24^th, 2018

• "You have a Faculty message from your Department" - March 19^th, 2018

• "notice" - March 19^th, 2018

• "Ticket ID: #135863000223" - March 18^th, 2018

• "2018 LSU UPDATE" - March 16^th, 2018

• "You have a New File" - February 12^th, 2018

• "Library Notifications" - February 9^th, 2018

• "3 unread message" - January 22^nd, 2018

• "You Have A Faculty Message From Chelsea Patton" - January 12^th, 2018

• "Secured Document for Review" - January 10^th, 2018

• "E-mail Validation: Louisiana State University" - January 9^th, 2018

• "Unusual Login Attempt" and " " (No Subject) - January 8^th, 2018

• "Compliment of the season" - January 2^nd, 2018

• "hi" - December 21^st

• "View important information." - December 20^th

• "Very Urgent" - December 18^th

• "Information Technology." - December 18^th

• "blocked sign-in attempt" - December 12^th

• "Action On Your Account" - December 11^th

• "Hi" - November 28^th

• "Hi" - November 9^th

• "Louisiana Today: Email Security Advisory" - November 6^th

• "LSU Information Technology" - November 2^nd

  Archived Phishing Messages