Threat Status History
Bank details request - PostedPhishers will often browse a company or school web page to harvest names of important people at the school, and specially craft targeted emails. Since these are specially directed emails they are called spear phishing.
Hope you are having a splendid day. I want you to quickly email me the details you will need to help me process an outgoing wire transfer to another bank.
I will appreciate a swift email response.
See please. Thank you - PostedVariations of this email are trying to trick community members into updating their contact information. The link redirects to a "wix.com" website requesting information such as date of birth, username, password, and email address. Do not submit your information!
From: Angelo, Dana
Date: December 20, 2014
To: undisclosed recipients
Subject: See please. Thank you
Please open and update!
Mail News Update! - PostedHere is another phishing message making its rounds within the community. Don't forget it's easy to spoof the "From" address in a message so don't assume the message is legit even if you recognize the sender's address. The URL in the message actually links to a different non-Reed website (see image below).
From: Reed College <firstname.lastname@example.org>
Subject: Mail News Update!
To: Recipients <email@example.com>
This Email is from Reed College, we will be making some vital E-mail account maintenance to ensure high quality in Internet connectivity in the 2014 fight against spam and improve security, all Mail-hub systems will undergo regularly scheduled maintenance.
To confirm and to keep your account active during and after this process
Kindly Click or copy the Universal Web Link and fill the following
3203 SE Woodstock Blvd, Portland, OR 97202•
Here is what the phish website looks like:
REED College Web Login - PostedThis phishing message is cleverly crafted and at first glance appears to be authentic. The sender name is similar to an actual staff member, and the link redirects to a nearly identical looking Reed Web Login page. Look closely at the URL and you will see it is bogus. Do not be fooled by this one!
From: "Access Services Assistant"
Subject: REED College Web Login
It has recently been observed that some users have difficulty logging into REED College Web. Please use this link to check your access.
If you can't login, contact at firstname.lastname@example.org.
Access Services Assistant
Reed College Library
3203 SE Woodstock Boulevard
Portland, OR 97202-8199
If you follow the link in the message, the website looks like this:
Warning! your apple account has been frozen temporarily - PostedAt first glance, this message may appear to be legit. The email is purportedly from Apple. A quick mouse hover over the "Verify Now" link reveals a non-Apple website. Don't fall for this phish!
Reed College | CIS | Help | E-Mail Clients - PostedDon't be fooled by this phishy email! Although the link in the message looks like a Reed website, it redirects you to a different site. Don't enter your username or password!
From: Reed College
Subject: Reed College | CIS | Help | E-Mail Clients
Dear Reed College E-Mail Client,
This Email is from Reed College Computing & Information Services - CIS.
The Reed College email policy requires the CIS to send an e-mail communication to you informing you of this emergency updates.
Reed College will be making some vital e-mail account maintenance to ensure high quality in Internet connectivity, in other to boost our sever's anti-spam & anti-phishing server capacity.
All Mail-hub systems will also undergo regularly scheduled maintenance operation. To keep your account active during and after this process, kindly follow the University's email-account re-verification link below;
3203 SE Woodstock Blvd Portland, OR 97202, United States
Copyright © 2013 Reed College Computing & Information Services
The link in the message redirects to a website that looks like this:
Phishing message that appears to come from CUS! - PostedThe following message appears to come from the CUS Help Desk, even though we did not send it! This is just another clever attempt by the phishers who want to trick you into revealing your username and password. Do not follow the link in the message or enter your login information.
From: "CUS Help Desk" <email@example.com>
Date: June 20, 2013 7:12:13 AM PDT
Subject: Reed Email Sign-in Alert
We detected a login attempt with valid password to your Reed email account from an unrecognized device on Thur Jun 20, 2013 07:08 AM EET.
Location: Germany (IP=184.108.40.206)
Note: The location is based on information from your Internet service or wireless carrier provider.
Was this you? If so, you can disregard the rest of this email.
If this wasn't you, please LOGIN HERE to confirm your ownership of this account and to protect your email account information from potential future account compromise. The office of Information Security will keep this updated if information should change, but we encourage all users to run their updates after the expected release of this patch.
Computer User Services (CUS), Help Desk
Computing & Information Services
© Copyright 2013 Reed College. All rights reserved.
Phish of a phish - PostedThis phishing email warns about being phished!
Information Technology Services Help Desk - PostedIt's true that Reed is migrating email to Gmail, but the following email is a phish. Don't be fooled!
Subject: Information Technology Services Help Desk
Date: Wed, 29 May 2013 14:04:32 +0300
From: Reed College <firstname.lastname@example.org>
Reed College has upgraded the webmail server to a new and more secured
This will enable your webmail take a new look, with new functions and
You are advised to "Click" and "Follow" the link below to upgrade and to
enable advanced security features;
3203 Southeast Woodstock Boulevard,
Copyright © 2013•
Missed Package Delivery - PostedMany Reedies are receiving the following email and wondering if it is legit. The red flag is the web address. If you hover your mouse over the URL (but don't click on it!), you will see it is redirecting to a bogus website.
From: US Postal Service <email@example.com>
Subject: Missed Package delivery
Notice of Tax Return for Year 2012 - PostedIt's tax season and the phishers are trying to take more of your money! Do not be fooled and don't click on the link in the message.
Your Order - Approved - PostedBe suspicious if you receive an email about an airline ticket you didn't purchase. Various forms of this email will use other airlines. Don't click on the links in the message!
Subject: Your Order#846280172 - APPROVED
From: Delta Airlines
Your credit card has been successfully processed.
FLIGHT NUMBER DT846280172US
DATE & TIME / APR 14, 2013, 12:45 AM
ARRIVING / Washington
TOTAL PRICE / 501.33 USD
Please download and print your ticket from the following URL :
For more information regarding your order, contact us by
[Info] Important Email Migration? - PostedThough Reed is migrating email to Gmail, the message below is just phishing for your information. Do not click on the link in the message!
Subject: [Info] Important Email Migration?
From: Admin announcement
Migration to the new email server has commenced, you are required to validate your webmail account here <http://skyviperpc.com/images/...> for upgrade to take effect.
Users who do not upgrade there account may loose important data information in there mailbox. Please click here <http://skyviperpc.com/images/...> to update details.
Breaking News - PostedIf you receive the following email, don't be fooled into clicking on the link and filling out the requested information! It's just a ploy from phishers who want your username and password.
Subject: Breaking News
Dear Email user,
We have upgraded our server to more secured version.This is to protect and prevent unauthorized access to your email account.You are require to upgrade your account to secured version by Clicking here or on the secure link below
The personal information requested is for the safety of your account. Please leave all information requested to avoid account deactivation.
©2012 Reed College
The link takes you to a form on a 3rd party website:
Subject: Richard Wilson commented on your Wall post.From: Facebook <firstname.lastname@example.org>Date: 2012.08.08 8:45 AM