This is a phishing attempt first reported to CSULB ITS on August 3, 2017.

From:  William Margulies
Sent:  Thursday, August 03, 2017 7:06 AM   
Subject:  CSULB Session Expired/Timeout

 

Summary

The fraudulent email is very vague and informs recipients that their CSULB session has expired and to click on a link to start a new session.  This phishing email comes from an actual CSULB account which has been compromised by phishers/hackers and is being used to broadly email the campus.  The compromised account issue is being addressed.

Intent of the Email

The sender is attempting to capture email account credentials for their own malicious purposes or to install malware. The link has been blocked from being accessed while on the campus network and has been reported as abuse to the website host company.

Screenshots

Figure 1: Screenshot of the phishing email

View all Phishing Reports:

All Phishing Reports