Re: Phishing Attack

[Victor Fayed <fayedv () MEREDITH EDU>]

We did get a few hundred of these with a link to the "password verification
form" being hosted on PageCloud.

It's worth mentioning that Pagecloud's support were pretty quick responding
and taking the malicious site down.

*************************Sample***********************

From: *Meredith College* <
​...####​
whangasurf@
​....​
clear.net.nz
​####​
>
Date: Tuesday, September 19, 2017
Subject: Alert!!
To: info
​..##
@
​##​
mail
​##​
.##com


Meredith College performs computer system and network
infrastructure maintenance, verify your email before the
next 24hours:
​http##:##/
/##meredithedu
​​
.pagecloud
​###
c
​o
m
​##

*************************Sample***********************

​Regards,

Victor Fayed
Office of Technology Services
Meredith College
​3800 Hillsborough Street
Raleigh, NC 27607​


Technology Services will never ask for your password... Never give your
passwords to anybody
​.

On Wed, Sep 20, 2017 at 9:52 PM, Ronald King <ronald.king () morgan edu> wrote:

> Anyone else get bombarded with a phishing attack with sites created on
> Yolasite or Pagecloud tonight? Just checking to see how targeted it may
> have been.
>
> Thanks,
> *Ronald A. King, CISSP*
> Chief Information Security Officer
> Morgan State University Office: (443) 885-3372
> 1700 E. Cold Spring Ln
> <https://maps.google.com/?q=1700+E.+Cold+Spring+Ln&entry=gmail&source=g>.
> Email: ronald.king () morgan edu
> Baltimore, MD 21251 URL: http://www.morgan.edu
>
> *Growing the future ... Leading the world*
> <http://www.morgan.edu/Documents/ABOUT/StrategicPlan/StrategicPlan2011-21_Final.pdf>