Child pages
  • 2015-09-17 Re: ITS Helpdesk: Webmail Account Violation
Skip to end of metadata
Go to start of metadata

This is a phishing attempt first reported to CSULB ITS on September 17, 2015.

Email Detail

From: Rebecca Travers [mailto:R.Travers.11@unimail.winchester.ac.uk]
Sent: Thursday, September 17, 2015 10:31 AM
Subject: Re: ITS Helpdesk: Webmail Account Violation

Summary

The user receives an email informing that their email account may have been accessed by a third party and to click on a link to validate and upgrade their account. The link goes to a fraudulent website which looks like an official OWA login page attempting to collect email account password information. Recipients of this fraudulent email are advised to mark this as junk. The fraudulent will be reported as abuse to the website host company (Hostinger).

Intent of the Email

The sender is attempting to collect password information to access email accounts for their own malicious purposes.

Screenshot

 Figure 1: Screenshot of the phishing email 
 

 Figure 2: Screenshot of the phishing site attempting to harvest password credentials

View all Phishing Reports:

All Phishing Reports

  • No labels