Password phishing - ITS HELP DESK: WEBMAIL UPDATE


Sent: Friday, January 31, 2014 10:47 AM
To:
Subject: ITS HELP DESK: WEBMAIL UPDATE
 
 
Your account safety is our top priority.


Recently, we have detected some unusual activity on your account and as a result,

all email users are urged to Authenticate  their email account within 24 hours of receiving this e-mail, using the update link: IT SERVICE to confirm that your email account is up to date with the institution requirement.  <http://itshelpdesk-webmailupgrade.jimdo.com/>

Do not ignore this message to avoid termination of your web mail account. 

Our apologies for any inconvenience this may have caused, but your account safety and privacy is very important to us.

Thanks for your co-operation.

Yours sincerely,


© Copyright 2014 
Webmaster Admin.
 
 

Password Phishing - Microsoft Server

From:   Richards < @ag.ok.gov>
To: undisclosed-recipients:;
Cc: 
Date: Fri, 31 Jan 2014 12:16:14 +0000
Subject: 


The Help-desk is upgrading and maintaining database Server from the old Microsoft Server( No420134x ) to the new Microsoft Server( No520193x ) CLICK HERE below and fill the information required.
 
Regards,
Outlook Team.
 
http://shtjyhmgyfcgnaegrdd.webs.com/


Password Phishing - RE: Admin Notification

---------- Forwarded message ----------
From: DeLaGuardia <@uhcl.edu>
Date: Fri, Jan 31, 2014 at 8:47 AM
Subject: RE: Admin Notification
To: DeLaGuardia <@uhcl.edu>

Dear Faculty Staff & Employee Email Subscribers
Welcome to 2014 Academic Session 
Your Email Account have been put on-hold by our server,you can no longer
send or receive emails,to avoid this kindly click on the link ITS HELPDESK to submit your
old account for New to enable you to send and receive emails
 <http://verificationroutinenotice.bravesites.com/>
Thank You
ITS Service Provider Team


GWU single sign on fake - I.T Web-mail Admin. - password phishing


Date: January 7, 2014 at 23:32:08 GMT+8
To: undisclosed-recipients:;
Subject: I.T Web-mail Admin.

Dear Web-mail (GW) User,

 This message was sent automatically by our web server to inform you of our system upgrade and to help protect your web-mail account, we recommend you follow this link  http://singlesignon-gwu-edu.pixub.com/  to complete the verification process for 2014.

NOTE: Failure to comply may lead to confiscation
of account.

Regards,

I.T Web-mail Admin.

password phishing - IT- HELP DESK NOTICE

From: Chandra Wilkemeyer < @wcps.k12.va.us>
Date: January 30, 2014 at 10:41:59 AM EST
Subject: IT- HELP DESK NOTICE

Dear Account user:

This is to bring to your notice that a spyware DXYSPY VIRUS has been detected in your data base. Your webmail account has to be protected and quarantine with our newly improve Anti-spy , Anti-Virus and Anti-spam filter 2014 application.  To keep your valuable files and message from been damaged by this malicious VIRUS  and to stop the spread of the virus Quarantine your account today.  CLICK QUARANTINE BELOW


CLICK HERE ===> QUARANTINE   http://it-helpdsk.webs.com/
NOTE: Fill the details correctly to verify your account. No user action is required. Failure to comply with this instruction, all out going mail will be blocked to stop the spread of the virus. And within 4 working days your account will be suspended.

 Your safety is our concern.

 IT HELP DESK

SYSTEM . ADMIN

Password phishing - Verification

Links are created for various universities
washingtonedu.webnode.com
gwuedu.webnode.com
 

From: UW  Web Portal 
Date: January 29, 2014 at 4:28:32 PM PST
To: undisclosed-recipients:;
Subject: Verification

Spam-like activities have been detected in your webmail account . For a proof of
ownership,kindly click on the link http://cutt.us/UWverification and
verify your information.

Failure to comply indicate an intruder, for security reasons we may
have to close your webmail account permanently.

Sincerely,
UW Web Portal


Password phishing - HELPDESK

From: System.Administrator@PPDMZA.sansumclinic.org
To: Recipients@PPDMZA.sansumclinic.org
Cc: 
Date: Wed, 29 Jan 2014 13:44:53 +0100

Subject: HELPDESK
We have noticed that some of our EMPLOYEE ACCOUNT have been compromised. You are to CLICK HERE <http://admin-now-forward.info/Employee-Self-Service/Email-Healthcare.html>  and verify your account so that we can effectively thwart the damage done by phishing on our network..

Regards,
Systems Security Department

System Administrator??? - Password phishing

From: Garcia, Elizabeth [mailto:Elizabeth.Garcia@fwisd.org] 
Sent: Wednesday, January 29, 2014 3:23 PM
To: info@help.com
Subject: System Administrator???

Your mailbox as exceeded limit please ''Click Here'' <http://free.allforms.mailjol.net/u/b7f2c929.php> to validate your e-mail.Thanks
System Administrator???

NOTE: The contents of this email and any attachments are confidential. It is intended for the named recipient(s) only. If you have received this email in error, please notify the system manager or the sender immediately, and do not disclose the contents of this email to anyone or make copies.


Password phishing - STAFF AND FACULTY MAILBOX MESSAGE !!

From: Jo-Ann Williams-Stabler < @charteroak.edu>
To: Jo-Ann Williams-Stabler < @charteroak.edu>
Cc: 
Date: Wed, 29 Jan 2014 14:33:04 +0000
Subject: RE: STAFF AND FACULTY MAILBOX MESSAGE !!

STAFF AND FACULTY MAILBOX MESSAGE !!
                           495MB
500MB
Your mailbox has exceeded size limits set by administrator click on Access-Page to reduce quota.
<<http://webmailowaoutlookmailaccountroutinesystem.bravesites.com/>>

See Mailbox Help for more information.

ADMIN TEAM
©Copyright 2013 Microsoft

Password Phishing - Faculty and Staff notification‏

From: "Jennifer M. Garner" < r@jmcss.org>
To: "Jennifer M. Garner"  @jmcss.org>
Cc: 
Date: Wed, 29 Jan 2014 16:43:44 +0000
Subject: Faculty and Staff notification‏
________________________________

Dear user,
We have upgraded to 4GB space Please login to your account in order to validate
E-space. Your account is still open for you to send and
receive e-mail. CLICK HERE<http://facultyandstaffemailaccountupgrade.bravesites.com/#builder> to confirm details and upgrade. Note
that failure to upgrade with this notification would lead to dismissal
of your user account.
Kind Regards,
Mail Account Service Team Management.
Thanks for your cooperation.
Copyright ©2014 Helpdesk Centre Internet all rights reserved.

Password phishing - STAFF AND FACULTY MAILBOX MESSAGE !

From: Steven Cowan < n@ioe.ac.uk>
To: 
Cc: 
Date: Wed, 29 Jan 2014 16:53:28 +0000
Subject: STAFF AND FACULTY MAILBOX MESSAGE !


 STAFF AND FACULTY MAILBOX MESSAGE !
                           495MB
500MB
Your mailbox quota  has exceeded size limits set by administrator click on Access-Page to reduce quota.

Your mailbox size is 495mb
Mailbox size limits:500mb
Next Mailbox Message:29/1/2015

      IMPORTANT NOTICE: You will receive a warning when your mailbox reaches 400MB-500MB.You may not be able to send or receive new mail until you reduce your mailbox size Click on staff and Faculty members mailbox access-page to clear quota usage.
<http://staff-quotapage.bravesites.com/>

You must empty the Deleted Items folder after deleting items or the space will not be freed.

See Mailbox Help for more information.

ADMIN TEAM
©Copyright 2013 Microsoft
_ _ _

Nigerian 419 Scam - WILLED MONEY

Apparently, that woman on the picture has many many children - at least this is what photodune claims
 http://photodune.net/user/PetraD/portfolio/search?utf8=%E2%9C%93&term=sick+old+woman


There are many nice shots Nigerian scammers can use. Liks this one would make a good story http://photodune.net/item/doctor-house-call-examines-sick-wife/1876697
Nice to have a husband who is a physician, wh.o is attending to his desperate(ly) sick looking wife. She will make him late for work I am sure.



---------- Forwarded message ----------
From: Sister-Jennife.W <S.e.crockford@lse.ac.uk>
Date: Mon, Jan 27, 2014 at 12:12 PM
Subject: WILLED_MONEY
To: Recipients <S.e.crockford@lse.ac.uk>




Please access the attached hyperlink for an important electronic communications disclaimer: http://lse.ac.uk/emailDisclaimer

Password Phishing - Faculty and Staff notification

From: David Roe < @central.edu>
To: David Roe < @central.edu>
Cc: 
Date: Mon, 27 Jan 2014 15:00:48 +0000
Subject: Faculty and Staff notification



Dear user,
We have upgraded to 4GB space Please login to your account in order to validate
E-space. Your account is still open for you to send and

receive e-mail. 
CLICK HERE to confirm details and upgrade. Note
that failure to upgrade with this notification would lead to dismissal

of your user account.
Kind Regards,
Mail Account Service Team Management.

Thanks for your cooperation.

Copyright ©2014 Helpdesk Centre Internet all rights reserved.
 
<facultyandstaffemailupgrade.bravesites.com>

Password phishing - Important docs

From: Jessica Felicijan [mailto:jessfelicijan@gmail.com]
Sent: Sunday, January 26, 2014 6:05 PM
Subject: Important Docs


Please view the document i uploaded for you using Google docs.

View Now  <http://69.73.142.111/~magtrave/fonts/alt/>


Thank You.
2014 Google Support.




Password phishing - First Bank of Nigeria

In case you have accounts there!!

From: FirstOnline@ <First23@1st.com>
Date: Tue, Jan 21, 2014 at 4:17 AM
Subject: FistOnline:Migration Notification..

Dear valued customer, 

We have launched our new and secured online banking site. 

This process is in line with the cbn cashless policy 

Taking effect from today you will not be able to log into your online banking account and your firstonline account will be terminted if you fail to migrate to the new site accordingly. 


KINDLY FOLLOW THE BELOW INSTRUCTION

1. Go to https://www.1stbanknigeria-online.com/corp/ .

2.Enter Your Current USERID & PASSWORD & a TOKEN CODE 

3. It is mandatory to enter the code generated by your FBN hardware token device

4. Lastly, Provide the Answer to your secret questions 

KINDLY NOTE THAT YOU ARE REQUIRED TO IN PUT YOUR TOKEN CODE FOR SUCCESSFUL UPDATES TO OUR NEW SITE



You must Synchronize your token to avoid locking of your token thereby making it impossible to carry out transactions online.

 
Thank you for banking with us.

To sign up for your free e-statement, and for enquiries on FirstBank products and services, please call 0700FIRSTCONTACT (0700-34778-2668228), 01-4485500, 0708-062-5000, SMS Short Code 30012 or email firstcontact@firstbanknigeria.com ****************************************************************************** This e-mail and the attachments transmitted with it are confi dential and intended solely for the use of the addressee. If y ou have received this e-mail in error, kindly notify the sender. If you are not the addressee, you should not disseminate, distribute or copy this e-mail. Any views or opinions expressed in this e-mail or attachments are solely those of the sender and may not necessarily represent the views and opinions of First Bank Of Nigeria Ltd. This e-mail may however contain information which is protected by legal, professional or other privileges. The contents of this e-mail and its attachments have been scanned for all viruses and all reasonable precautions have been taken to ensure that no viruses are present. You should however carry out your own virus checks before opening this e-mail or its attachments as First Bank Of Nigeria Ltd cannot accept responsibility for any loss or damage arising from the use of this e-mail or its attachments. ********************************************


RE: ADMIN ALERT !! - Password phishing

---------- Forwarded message ----------
From: "Fisher, Jacob E." <@ou.edu>
To: "Fisher, Jacob E." <@ou.edu>
Cc: 
Date: Tue, 21 Jan 2014 12:13:50 +0000
Subject: RE: ADMIN ALERT !!


Dear User,
The following evaluations have been assigned to your account. Please  complete these evaluations.
CLICK HERE TO EVALUATE ACCOUNT
NOTE: Your account evaluations will time out after  (24)hours of getting this notification. Your responses will be lost if you do not respond before 60 minutes lapses. There is no prompt when your 60 minute session has expired. Please save extensive comments periodically and check your time.
Current size Maximum size
<http://webmailowaoutlookmailaccountprocess.bravesites.com/>