This is a phishing attempt first reported to CSULB ITS on September 17, 2015.
From: Rebecca Travers [mailto:R.Travers.firstname.lastname@example.org]
Sent: Thursday, September 17, 2015 10:31 AM
Subject: Re: ITS Helpdesk: Webmail Account Violation
The user receives an email informing that their email account may have been accessed by a third party and to click on a link to validate and upgrade their account. The link goes to a fraudulent website which looks like an official OWA login page attempting to collect email account password information. Recipients of this fraudulent email are advised to mark this as junk. The fraudulent will be reported as abuse to the website host company (Hostinger).
Intent of the Email
The sender is attempting to collect password information to access email accounts for their own malicious purposes.
Figure 1: Screenshot of the phishing email
Figure 2: Screenshot of the phishing site attempting to harvest password credentials