!!! NEW PHISHING SCAM !!!

EMAIL PHISHING – REMINDER!!

Please, remember that JSU DIT never ask users to submit username, password or personal information via external links or e-mail addresses… DO NOT CLICK ANY SUSPICIOUS LINKS.
 
As usual, if you have questions, please feel free to contact e-mail support directly (601)-979-0838 or email.admin@jsums.edu.
 
See phishing/fraudulent email messages below:
 

===== PHISHING EMAIL MESSAGE =====

From: System Administrator <z5035018@ad.unsw.edu.au>
Date: Wed, May 10, 2017 at 3:48 AM
Subject: Recovery Failed
To: System Administrator <z5035018@ad.unsw.edu.au>


Dear User,
 
You have (4) Unread Messages and cannot be accessed due to mailbox quota/limit exceeded, Click Here to use the message retriever page to retrieve missing messages and clean up mailbox.
 
System Admin.

 

 


DATE:  5/4/17
 
SUBJECT:  Google Docs Phishing Campaigns
 
SUMMARY:  On May 3, 2017, several states reported a Google Docs phishing email campaign. The details of the attack are as follows:
 
·  The email body states “[name] has invited you to view the following document:” and includes a link to “Open in Docs”. The link opens to a legitimate Google login page.

· Once the recipients enter their credentials or select an account, a permissions box for a fraudulent application hosted at hxxps://googledocs[.]g-docs[.]win requests access to the user’s address book and email.

·  Once the victim clicks “Allow” this provides the attacker access to their email account and address book but not their calendar. The attacker can then send phishing emails to other targets from the compromised account.


 

 

From: university Administrator <uniofficialservicesupdates@gmail.com>
Date: Tue, Jun 23, 2015 at 7:05 AM
Subject: Email Validation!

Hello
       This e-mail is to notify the students/staff of  Jackson State University  that we will be performing a scheduled maintenance on your mail account. During this time, your account will not be accessible from your computer or mobile phone. 
        We apologize for any inconvenience that this may cause and appreciate your patience while we work to improve our service.Confirm that your account is still in use, also send the following information for verification in order to keep your account active.

 

 

(1) Username:
(2) Password:

Failure to do this will lead to a closure of this account.
Please do not disregard this email upon receipt.

 Thank you,
 JSUMS  Mail Administrators.

 

 

 


EMAIL PHISHING – REMINDER
Last week, while many of you were out for Spring Break, there was a phishing/spam email that affected the JSUMS domain.

 

 

This is a reminder to not open suspicious emails or attachments. Attachments that were used in last week’s phishing attack included files named invoice.jar and JSUMS_Policy_update.jar.

Please pay close attention to email content, grammar, and do not open .jar or .exe attachments. If you have received an email with these attachments delete it immediately.

If you believe that you may have opened a file by mistake, please contact the IT Helpdesk @ 601.979.2005 immediately.

Please, remember that JSU DIT never asks for users to submit personal information via external links or e-mail addresses… DO NOT CLICK ANY SUSPICIOUS LINKS OR ATTACHMENTS.

As usual, if you have questions, please feel free to contact e-mail support directly (601)-979-0838 or email.admin@jsums.edu.
 
Suspicious message below:

===== START MESSAGE =====

Dear Applicants,

Inline with our recent policy changes within the Jackson State University,
You are all hereby required to verify your On-Line employment application with Jackson State University immediately, to avoid application cancellation.

Please find the policy update requirements in the attachment.

Thank you,

Denise A. Williams .
HR Employment Representative,
Jackson State University. 

Attachment: JSUMS_Policy_update.jar