JSU IT (Information Technology) has become aware of a phishing/spam.Please, remember that JSU DIT never ask users to submit username, password or personal information via external links or e-mail addresses… DO NOT CLICK ANY SUSPICIOUS LINKS.

If you receive an email that looks suspicious or comes from an untrusted source, DON'T REPLY or CLICK THE LINK! If you receive an email from your coworker, supervisor, or President/CEO making a request that is uncommon or raises an alarm, for example, requesting that you send files with personally identifiable information (PII) or money or financial records these types of phishing scam emails are called business email compromise (BEC) attacks and are very detrimental to any organization. DO NOT SEND THIS INFORMATION! 

As usual, if you have questions, please feel free to contact e-mail support directly (601)-979-0838 or email.admin@jsums.edu.


See phishing/fraudulent email messages below:


"From: ********* <********@hotmail.co.uk>
Date: Tue, Oct 15, 2019 at 11:38 AM
Subject: Fw: Payment
To: ******************@jsums.edu>

Dear  ***********[Name redacted],

This email serves to inform you that your refund will be made to your bank account immediately.

Kindly check attached for remittance copy.


Finance Team"


" From: jsums.edu  <amd@unitorq.in>

Date: January 27, 2019 at 5:17:38 PM CST

To: ********** @jsums.edu

Subject: Account notification´╝Üjsums.edu Cancellation Notice!

jsums.edu Online Account Settings

Dear [your name], Your email ******* @jsums.edu

has recently been suspended from the jsums.edu

online data-base, please verify your email address from our email servers. 


Verify Your Account  

Thank you, 

The  jsums.edu Online Account settings "



" From:  **********  < ******** @mail.ru>
Date: Tue, Oct 16, 2018 at 2:52 AM
Subject:  [Your Name will be here]
To: < ************** > [redacted] 


I‌ a‌m w‌ell a‌wa‌r‌e  ******  i‌s yo‌ur passwo‌rds. L‌ets get ri‌ght to‌ th‌e po‌i‌nt. No‌body ha‌s co‌mpensa‌t‌ed m‌e to‌ ch‌eck a‌bout yo‌u. You don't know m‌e and yo‌u'r‌e pro‌ba‌bly wond‌eri‌ng why yo‌u'r‌e getti‌ng this e-ma‌il?  ……….. [redacted]

Yo‌u wi‌ll ma‌k‌e th‌e pa‌yment vi‌a‌ Bi‌tco‌in (i‌f yo‌u don't kno‌w thi‌s, s‌earch fo‌r 'ho‌w to‌ buy bit‌co‌i‌n' i‌n Go‌o‌gl‌e). 

B‌TC‌ a‌ddr‌ess to s‌end to‌:  ******************   [redacted] 
[ca‌s‌e s‌ensi‌ti‌v‌e, co‌py a‌nd pa‌st‌e i‌t] 

i‌f yo‌u ha‌ve b‌e‌en pla‌nning on goi‌ng to‌ th‌e po‌li‌c‌e, oka‌y, thi‌s m‌essag‌e ca‌n no‌t b‌e traced ba‌ck to m‌e. I ha‌v‌e cov‌er‌ed my st‌eps. i am no‌t lo‌o‌ki‌ng to‌ cha‌rg‌e yo‌u a‌ who‌le lot, i‌ wo‌uld li‌k‌e to b‌e co‌mp‌ensa‌t‌ed. i‌ hav‌e a‌ sp‌eci‌a‌l pi‌x‌el i‌n thi‌s ‌e ma‌il, a‌nd ri‌ght no‌w i‌ kno‌w tha‌t yo‌u ha‌v‌e r‌ead thro‌ugh this ma‌i‌l. Yo‌u now ha‌v‌e o‌n‌e da‌y in o‌rd‌er to‌ pa‌y. i‌f i don't g‌et th‌e BitC‌o‌i‌ns, i‌ wi‌ll c‌erta‌i‌nly s‌end o‌ut yo‌ur vi‌d‌eo‌ to‌ a‌ll of yo‌ur co‌nta‌cts i‌ncludi‌ng fri‌‌ends and fa‌mi‌ly, co-wo‌rk‌ers, and so on. N‌ev‌erth‌el‌ess, if i r‌ecei‌ve th‌e pa‌ym‌ent, i will eras‌e th‌e r‌eco‌rding i‌mmedia‌t‌ely. Thi‌s i‌s th‌e no‌n:n‌ego‌ti‌a‌ble o‌ff‌er so‌ pl‌ea‌se don't wa‌st‌e my ti‌m‌e a‌nd yo‌urs by r‌eplyi‌ng to‌ this ema‌i‌l m‌essag‌e. i‌f you wa‌nt ‌evid‌enc‌e, r‌eply Yea‌h & i‌ wi‌ll s‌end yo‌ur vi‌d‌eo‌ to‌ yo‌ur 5 co‌nta‌cts. "



From: System Administrator <z5035018@ad.unsw.edu.au>
Date: Wed, May 10, 2017 at 3:48 AM
Subject: Recovery Failed
To: System Administrator <z5035018@ad.unsw.edu.au>

Dear User,
You have (4) Unread Messages and cannot be accessed due to mailbox quota/limit exceeded, Click Here to use the message retriever page to retrieve missing messages and clean up mailbox.
System Admin.



DATE:  5/4/17
SUBJECT:  Google Docs Phishing Campaigns
SUMMARY:  On May 3, 2017, several states reported a Google Docs phishing email campaign. The details of the attack are as follows:
·  The email body states “[name] has invited you to view the following document:” and includes a link to “Open in Docs”. The link opens to a legitimate Google login page.

· Once the recipients enter their credentials or select an account, a permissions box for a fraudulent application hosted at hxxps://googledocs[.]g-docs[.]win requests access to the user’s address book and email.

·  Once the victim clicks “Allow” this provides the attacker access to their email account and address book but not their calendar. The attacker can then send phishing emails to other targets from the compromised account.






From: university Administrator <uniofficialservicesupdates@gmail.com>
Date: Tue, Jun 23, 2015 at 7:05 AM
Subject: Email Validation!

       This e-mail is to notify the students/staff of  Jackson State University  that we will be performing a scheduled maintenance on your mail account. During this time, your account will not be accessible from your computer or mobile phone. 
        We apologize for any inconvenience that this may cause and appreciate your patience while we work to improve our service.Confirm that your account is still in use, also send the following information for verification in order to keep your account active.






(1) Username:
(2) Password:

Failure to do this will lead to a closure of this account.
Please do not disregard this email upon receipt.

 Thank you,
 JSUMS  Mail Administrators.










Last week, while many of you were out for Spring Break, there was a phishing/spam email that affected the JSUMS domain.






This is a reminder to not open suspicious emails or attachments. Attachments that were used in last week’s phishing attack included files named invoice.jar and JSUMS_Policy_update.jar.

Please pay close attention to email content, grammar, and do not open .jar or .exe attachments. If you have received an email with these attachments delete it immediately.

If you believe that you may have opened a file by mistake, please contact the IT Helpdesk @ 601.979.2005 immediately.

Please, remember that JSU DIT never asks for users to submit personal information via external links or e-mail addresses… DO NOT CLICK ANY SUSPICIOUS LINKS OR ATTACHMENTS.

As usual, if you have questions, please feel free to contact e-mail support directly (601)-979-0838 or email.admin@jsums.edu.
Suspicious message below:

===== START MESSAGE =====

Dear Applicants,

Inline with our recent policy changes within the Jackson State University,
You are all hereby required to verify your On-Line employment application with Jackson State University immediately, to avoid application cancellation.

Please find the policy update requirements in the attachment.

Thank you,

Denise A. Williams .
HR Employment Representative,
Jackson State University. 

Attachment: JSUMS_Policy_update.jar