This is a phishing attempt first reported to CSULB ITS on September 9, 2017.
From: Deborah Sanchez
Sent: Saturday, September 9, 2017 6:36 AM
Subject: New Payroll Information
The fraudulent email is very vague and informs recipients that they have 1 new notification regarding payroll. The link appears as if it is a CSULB web address; however, it leads the user to a fraudulent page. This phishing email comes from an actual CSULB account which has been compromised by phishers/hackers and is being used to broadly email the campus. The compromised account issue is being addressed.
Intent of the Email
The sender is attempting to capture email account credentials for their own malicious purposes or to install malware. The link appears to go to a foreign website.
Figure 1: Screenshot of the phishing email
View all Phishing Reports: