University of Southern California

Tag Archives: phishing

← Older posts Newer posts →

Reporting a Phishing Email

Posted on by mbordas

If you receive an email that you suspect is a phish and would like to report it to the ITS security team, please forward the email, including all header information, to security@usc.edu. ITS may be able to use the information … Continue reading

Posted in Phishing | Tagged

Phish 2013-05-28

Posted on by mbordas

Many people have reported receiving the following email.  Be aware that it is phish, and the email address uscadmin@usc.edu was spoofed. Do not open the accompanying attachment or reply to the message.  Delete the message from your inbox.   From: USC Admin <uscadmin@usc.edu> … Continue reading

Posted in Phishing | Tagged

Phish 2013-05-11 #1

Posted on by Robert

Many people received multiple copies of the following phish. They came from multiple source email addresses. There are many signs that the message was illegitimate. The senders are non-USC addresses and were most probably compromised accounts since it does not … Continue reading

Posted in Phishing | Tagged

Phish 2013-05-08 #5

Posted on by Robert

Another over-quota phish.  We do not delete accounts that are over quota.  And they did not even bother to change the text of their phish from their previous victim site, East Tennessee State University.

Posted in Phishing | Tagged

Phish 2013-05-08 #4

Posted on by Robert

Another your-email-will-be-disabled-unless phish. Sent from a compromised account at another institution. The link goes to an obviously unrelated site. Typo in Subject.

Posted in Phishing | Tagged

Phish 2013-05-08 #3

Posted on by Robert

Phishers used a compromised faculty account to send Phish 2013-05-08 #1 to other USC addresses.  They managed to send about 100 before we detected and blocked it. Phishers often use this technique because it bypasses blocks of external sites and … Continue reading

Posted in Phishing, Security Breach | Tagged ,

Phish 2013-05-08 #2

Posted on by Robert

Another phish sent to around 100 people this morning.  We were only forwarded the body of the phish so we do not have full headers.  Mail logs show that the claimed sender was MaryJane.Hahner.2@nd.edu. They put some effort into this because … Continue reading

Posted in Phishing | Tagged

Phish 2013-05-08 #1

Posted on by Robert

Many people received the following phish this morning: There are many signs that the message was illegitimate. The basic premise, used by many phish, is flawed.  Users never need to “upgrade their email account”.  email/webmail ugprades occur on the server. … Continue reading

Posted in Phishing | Tagged

Phish 2013-05-01

Posted on by Robert

Many people received the following phish this morning: There are several signs that it was a phish instead of a legitimate message from JP Morgan Chase. The message came from “no-reply@bb-lab.com”. It was not directly addressed to you as a … Continue reading

Posted in Phishing | Tagged

Phish 2013-04-19

Posted on by Robert

Many people received the following phish this morning. If you hover over the link, you will see that what looks like a USC URL is actually a link to a site in Slovakia (.sk).  The usc.edu.htm target page tells us … Continue reading

Posted in Phishing | Tagged

← Older posts Newer posts →