%PDF-1.3 1 0 obj << /Type /Catalog /Outlines 2 0 R /Pages 3 0 R >> endobj 2 0 obj << /Type /Outlines /Count 0 >> endobj 3 0 obj << /Type /Pages /Kids [6 0 R ] /Count 1 /Resources << /ProcSet 4 0 R /Font << /F1 8 0 R /F2 9 0 R /F3 10 0 R /F4 11 0 R >> >> /MediaBox [0.000 0.000 612.000 792.000] >> endobj 4 0 obj [/PDF /Text ] endobj 5 0 obj << /Creator (DOMPDF) /CreationDate (D:20240517075826+00'00') /ModDate (D:20240517075826+00'00') /Title (IT-artikels) >> endobj 6 0 obj << /Type /Page /Parent 3 0 R /Annots [ 12 0 R ] /Contents 7 0 R >> endobj 7 0 obj << /Length 4134 >> stream 0.702 0.800 0.816 rg 34.016 34.016 543.969 723.969 re f 1.000 1.000 1.000 rg 45.266 217.066 521.469 529.668 re f 0.773 0.773 0.773 RG 0.75 w 0 J [ ] 0 d 45.641 217.441 520.719 528.918 re S 0.773 0.773 0.773 rg 61.016 617.359 m 550.984 617.359 l 550.984 618.109 l 61.016 618.109 l f 1.000 1.000 1.000 rg BT 278.868 698.693 Td /F1 10.5 Tf [(POST LIST)] TJ ET 0.200 0.200 0.200 rg BT 212.789 670.111 Td /F1 14.4 Tf [(INFORMASIETEGNOLOGIE)] TJ ET BT 221.824 643.466 Td /F1 11.7 Tf [(INFORMATION TECHNOLOGY)] TJ ET BT 61.016 583.841 Td /F1 14.4 Tf [(MAILBOX FULL PHISHING MESSAGE)] TJ ET 0.400 0.400 0.400 rg BT 61.016 564.033 Td /F3 9.0 Tf [(A phishing email with the subject MAILBOX FULL has been sent from an internal SU staff member's account. \(See below )] TJ ET BT 61.016 553.044 Td /F3 9.0 Tf [(for example with links removed\))] TJ ET BT 61.016 533.055 Td /F3 9.0 Tf [(Remember that spear-phishing email always appears to come from a trusted source like a university address and because )] TJ ET BT 61.016 522.066 Td /F3 9.0 Tf [(it might seem to come from someone we know personally, there is a greater potential danger. Note that even if it says )] TJ ET BT 61.016 511.077 Td /F3 9.0 Tf [(Microsoft, there's no indication of branding. Official communication from IT will always be branded and look the same. )] TJ ET BT 61.016 500.088 Td /F3 9.0 Tf [(Also, note the multiple spelling errors and suspiciously bad language. )] TJ ET BT 61.016 480.099 Td /F4 9.0 Tf [(Do NOT click on any of the included links in the email or enter your username or password.)] TJ ET BT 451.634 480.099 Td /F3 9.0 Tf [( You should never do )] TJ ET BT 61.016 469.110 Td /F3 9.0 Tf [(this at any time. If you follow the link and supply your information, it will be used by phishing criminals to gain access to )] TJ ET BT 61.016 458.121 Td /F3 9.0 Tf [(your bank details. )] TJ ET BT 61.016 438.132 Td /F3 9.0 Tf [(If you have any inquiries, please let us know by logging a request on )] TJ ET 0.373 0.169 0.255 rg BT 335.660 438.132 Td /F3 9.0 Tf [(ServiceNow)] TJ ET 0.373 0.169 0.255 RG 0.18 w 0 J [ ] 0 d 335.660 436.981 m 383.666 436.981 l S 0.400 0.400 0.400 rg BT 383.666 438.132 Td /F3 9.0 Tf [( or calling our Service Desk at 808 4367. )] TJ ET BT 61.016 427.143 Td /F3 9.0 Tf [(For more information on this and other phishing attacks, refer to our blog and Twitter account.)] TJ ET 0.592 0.592 0.592 rg 0.592 0.592 0.592 RG 305.016 417.445 m 306.516 417.445 l 305.766 416.695 l 305.766 416.695 l f 1.000 1.000 1.000 rg 1.000 1.000 1.000 RG 305.016 415.195 m 306.516 415.195 l 305.766 415.945 l 305.766 415.945 l f 306.516 417.445 m 306.516 415.195 l 305.766 415.945 l 305.766 416.695 l f 0.592 0.592 0.592 rg 0.592 0.592 0.592 RG 305.016 417.445 m 305.016 415.195 l 305.766 415.945 l 305.766 416.695 l f 0.400 0.400 0.400 rg BT 61.016 397.404 Td /F4 9.0 Tf [(From:)] TJ ET BT 86.513 397.404 Td /F3 9.0 Tf [( SU Staff, Mev )] TJ ET BT 61.016 386.415 Td /F4 9.0 Tf [(Sent:)] TJ ET BT 83.516 386.415 Td /F3 9.0 Tf [( Tuesday, 15 August 2017 12:18 PM)] TJ ET BT 61.016 375.426 Td /F4 9.0 Tf [(Subject:)] TJ ET BT 96.521 375.426 Td /F3 9.0 Tf [( Mailbox Full)] TJ ET BT 61.016 355.437 Td /F3 9.0 Tf [(Your mailbox is full and you have 3 mails pending. kindly increase the storage capacity of your mailbox account. Increase )] TJ ET BT 61.016 344.448 Td /F3 9.0 Tf [(the storage capacity by clicking below)] TJ ET BT 61.016 324.459 Td /F3 9.0 Tf [(            )] TJ ET BT 91.040 324.459 Td /F3 9.0 Tf [( storage increase)] TJ ET 0.400 0.400 0.400 RG 0.18 w 0 J [ ] 0 d 91.040 323.308 m 160.070 323.308 l S BT 61.016 304.470 Td /F3 9.0 Tf [(Fill out the instruction in order to increase the storage capacity to continue using your email account inorder to avoid being )] TJ ET BT 61.016 293.481 Td /F3 9.0 Tf [(disconnected.)] TJ ET BT 61.016 273.492 Td /F3 9.0 Tf [(©Copyright 2017 Microsoft)] TJ ET BT 61.016 253.503 Td /F3 9.0 Tf [(All Right Reserved.)] TJ ET BT 61.016 235.014 Td /F3 9.0 Tf [(Posted in:E-mail,Security | Tagged:Phishing,Spear Phishing | With 0 comments)] TJ ET endstream endobj 8 0 obj << /Type /Font /Subtype /Type1 /Name /F1 /BaseFont /Helvetica-Bold /Encoding /WinAnsiEncoding >> endobj 9 0 obj << /Type /Font /Subtype /Type1 /Name /F2 /BaseFont /Helvetica /Encoding /WinAnsiEncoding >> endobj 10 0 obj << /Type /Font /Subtype /Type1 /Name /F3 /BaseFont /Helvetica-Oblique /Encoding /WinAnsiEncoding >> endobj 11 0 obj << /Type /Font /Subtype /Type1 /Name /F4 /BaseFont /Helvetica-BoldOblique /Encoding /WinAnsiEncoding >> endobj 12 0 obj << /Type /Annot /Subtype /Link /A 13 0 R /Border [0 0 0] /H /I /Rect [ 335.6597 437.2996 383.6657 446.4571 ] >> endobj 13 0 obj << /Type /Action /S /URI /URI (http://sunprod.service-now.com/) >> endobj xref 0 14 0000000000 65535 f 0000000008 00000 n 0000000073 00000 n 0000000119 00000 n 0000000305 00000 n 0000000334 00000 n 0000000469 00000 n 0000000551 00000 n 0000004737 00000 n 0000004849 00000 n 0000004956 00000 n 0000005072 00000 n 0000005192 00000 n 0000005320 00000 n trailer << /Size 14 /Root 1 0 R /Info 5 0 R >> startxref 5403 %%EOF MAILBOX FULL phishing message « Informasietegnologie
Language:
SEARCH

  • Recent Posts

  • Categories

  • Archives

«
»

MAILBOX FULL phishing message

A phishing email with the subject MAILBOX FULL has been sent from an internal SU staff member’s account. (See below for example with links removed)

Remember that spear-phishing email always appears to come from a trusted source like a university address and because it might seem to come from someone we know personally, there is a greater potential danger. Note that even if it says Microsoft, there’s no indication of branding. Official communication from IT will always be branded and look the same. Also, note the multiple spelling errors and suspiciously bad language. 

Do NOT click on any of the included links in the email or enter your username or password. You should never do this at any time. If you follow the link and supply your information, it will be used by phishing criminals to gain access to your bank details. 

If you have any inquiries, please let us know by logging a request on ServiceNow or calling our Service Desk at 808 4367. For more information on this and other phishing attacks, refer to our blog and Twitter account.

From: SU Staff, Mev <mevsustaff@sun.ac.za>
Sent: Tuesday, 15 August 2017 12:18 PM
Subject: Mailbox Full

Your mailbox is full and you have 3 mails pending. kindly increase the storage capacity of your mailbox account. Increase the storage capacity by clicking below

             storage increase

Fill out the instruction in order to increase the storage capacity to continue using your email account inorder to avoid being disconnected.

©Copyright 2017 Microsoft

All Right Reserved.

Email

Tags: ,

This entry was posted on Tuesday, August 15th, 2017 at 12:51 pm and is filed under E-mail, Security. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

Comments are closed.

 

© 2013-2024 Disclaimer: The views and opinions expressed in this page are strictly those of the page author(s) and content contributor(s). The contents of this page have not been reviewed or approved by Stellenbosch University.