We are seeing an aggressive campaign of phishing scams being sent to University email addresses over the past few days (Mar 22 - 25, 2013). Most of the emails look like this:
-------------------------------------------------------------------------------------------------------------
Subject: Warning Yourmailbox Is Almost Full®
On Nov 19, 2012 the University was attacked by multiple sources with a convincing phishing email. There were hundreds of recipients who received the text below:
From: Admin-Uleth.Ca [mailto:noreply@uleth.ca]
Sent: Monday, November 19, 2012 2:02 PM
Subject: Uleth.Ca
Dear Email User!
Your mailbox has exceeded the set quota limit. You may not be able to send or receive new mails effect from on the 23rd of November 2012, until you upgrade/increase your quota limit.
Dear:WebMail Subscriber, We hereby announce to you that your email account has exceeded its storage
limit. You will be unable to send and receive E-mails and your email
account will be deleted from our server. To avoid this problem, you are advised to verify
your email account by clicking on the Admin help desk link below for update of your email,
=====> Clink the link below.
NOTE:If unable to clink the link you are advice to copy the link and paste it in a new browser,Due to much junk/spam emails you receive daily, we are currently
Account Status Verification Alert
Dear Valued Customer,
A recent security update as being issued from BMO Bank of Montreal fraud department. We require you to update your online accounts due to a recent security patch upgrade to our servers.
You are requested to verify your account details correctly with us.
Verify and Update your identity
Failure to confirm and verify your BMO Online Account Information's
might lead to your account permanently suspended.
Dear Customer,
We recently reviewed your account, and suspect that your TD Canada Trust Online Banking account might have been accessed by an unauthorized third party.
Protecting the security of your account is our primary concern, therefore as a preventive measure, we have temporarily limited access to sensitive account features.
To restore your account access, we need you to confirm your identity.
Please follow the link below to proceed to confirming your account information:
Dear Customer,
We recently reviewed your account, and suspect that your RBC Royal Bank account
might have been accessed by an unauthorized third party.
Protecting the security of your account is our primary concern,
therefore as a preventive measure, we have temporarily limited
access to sensitive account features.
To restore your account access, we need you to confirm your identity.
Please follow the link below to proceed to confirming your account information:
