The Phish Market is a list of recent emails that were reported to the KSU Office of
Cybersecurity as possible phishing attempts on the University community. The Office
of Cybersecurity has confirmed these messages as malicious phishing attempts. If you
have received an email that you believe may contain a phishing attempt, it is possible
that some of the language and links differ from similar messages posted on the Phish
Market. It is not uncommon for malicious actors to create variant messages.
We update this list regularly but it is possible that you received the message before
it is published to the Phish Market. If you mistakenly provided credentials to a
confirmed phishing email, please change your NetID password immediately at https://netid.kennesaw.edu. If you receive a suspicious email not in the Phish Market, please forward it to firstname.lastname@example.org.
Email is the official method of communication at Kennesaw State University. All announcements
and business related correspondence are conducted through official Kennesaw State
University email accounts. Any email claiming to be an employee of the university
that does not originate from an “@kennesaw.edu” address should be held in suspicion,
especially if it claims to be from a person of leadership. Please follow the reporting
instructions above if you receive suspicious emails that meet these criteria.
Cyber Security Smart Cookie Award
In recognition of National Cybersecurity Awareness Month, UITS is proud to announce
the launch of the Cybersecurity Smart Cookie Award. The award is a small token of appreciation for those individuals who have contributed
to the cybersecurity of Kennesaw State University through their proactive action,
ultimately assisting UITS in the detection and management of risks.
And, for the month of October, the Department with the highest percentage of cybersecurity
smart cookie award winners will be awarded a Great American Cookie on October 31st!
Cyber Security Digital Badge
Show your friends and colleagues your "cyber-prowess!" You can earn digital badges to be awarded based upon completing cyber-security-related activities. Each activity
is associated with increasing awareness of cyber security threats. Each badge level
will reinforce your critical role as a user in the security of institutional information
and systems. Each badge expires annually.
2019-10-24 | Phishing Message
Sent: Wednesday, October 24, 2019 12:53 PM
Subject: Quick Request
[Title], Department of [Department]
2019-09-13 | Phishing Message
From: [Name] [email]@students.kennesaw.edu
Sent: Friday, September 13, 2019 3:41 PM
Subject: Administrative Assistant Needed From the HR Dept.....
Dear Valuable Applicant this is a Part time job offer that will earn you $350 weekly
and allowance of $50 by working from anywhere of your choice and 6-8 hrs weekly job
description includes data entry and bookkeeping you are required to [text link] Apply
or send a copy of your resume to [email] you will be contacted within 24hrs of signup
2019-07-27 | Phishing Message with Link(s)
From: Jax Jordan <email@example.com>
Sent: Saturday, July 27, 2019 5:30 PM
To: <_____________> <firstname.lastname@example.org>
Subject: TRS/ORP Assistance for Kennesaw State University Personnel
Employee [Recipient Name],
Each year, as an employee of Kennesaw State University you are eligible to receive
a free one-on-one consultation for answers to your specific state, federal and individual
retirement benefit questions.
At your consultation, you will be provided with information that will tell you what
your expected income will be from TRS/ORP when you retire, and how much longer you
will have to work. That, along with advice on the best ways to utilize your 401(a)
options with your TRS/ORP and/or Social Security benefits.
Appointments fill up quickly. If you’d like to secure your spot, click on the link
below, or simply reply “yes” to this email.
All licensed representatives are not employees of the college or TRS/ORP.
To opt out of future mailings, click on the following link:
[Unsubscribe message link]
2019-05-06 | Phishing Message with Link
Sent: Monday, May 6, 2019 3:20:04 PM
[Contains link to phishing page as seen in image]
[Message clipped] View entire message
This e-mail may contain information that is privileged and confidential. If you suspect
that you were not the intended recipient, please delete it and notify the sender as
soon as possible.
2019-03-29 | Phishing Message
Subject: Re: Happy Birthday!!!
Message for [Recipient Name]
[link, large blue box] Read this message
Re: Happy Birthday!!!
Watch before: Saturday
2019-03-04 | Phishing Message
Subject: Re: Are you on campus
I will call you after the meeting. I need you to help me get a Steam Wallet Gift card
from the store and send me pictures. I will reimburse you back when I get back to
the office. I need to send it to someone and it is very important because I am still
at the meeting and I need to get it sent as soon as possible. Today is my best friend's
[Title], Department of [Department]
Kennesaw State University
2018-12-13 | Phishing Message
Subject: Are you on campus
Are you available