I received a pretty crappy attempt to get me to give up access to my lifetime Stanford computer science department email address. I hope no one falls for this!
From: Stanford University noreply@cs.stanford.edu
Subject: Computer Science- Web Upgrade
Date: May 29, 2013 1:20:01 PM PDT
To: you noreply@cs.stanford.edu
Reply-To: noreply@cs.stanford.eduThis email is being sent to you because of violation security breach that was detected by our servers. Our server detected that one of the messages you received from a contact has already infected your mail with a dangerous virus.
You can no longer be allowed to send messages or files to other users to prevent the spread of virus to other @cs.stanford.edu mail users. Please follow the link below to perform maintenance work needed to improve the protection of the web-mail for us to verify and have your account cleared against this virus.
CLICK HERE
WARNING!!! E-MAIL OWNERS who refuses to upgrade his or her account within 48hrs after notification of this update will permanently be deleted from our data base and can also lead to malfunctioning of the client or user’s account and we will not be responsible for loosing your account.
The link goes to: http: //www.123contactform.com/form-591874/Web-Upgrade
(I didn’t click on it)
The full headers are below:
Stanford University noreply@cs.stanford.edu
To: you noreply@cs.stanford.edu
Reply-To: noreply@cs.stanford.edu
Delivered-To: [redacted]
Received: by 10.194.174.6 with SMTP id bo6csp23125wjc; Wed, 29 May 2013 13:26:10 -0700 (PDT)
Received: from forward1-smtp.messagingengine.com (forward1-smtp.messagingengine.com. [66.111.4.223]) by mx.google.com with ESMTPS id fd1si22565649vcb.65.2013.05.29.13.26.09 for <[redacted]> (version=TLSv1 cipher=RC4-SHA bits=128/128); Wed, 29 May 2013 13:26:10 -0700 (PDT)
Received: from imap19.nyi.mail.srv.osa (imap19.nyi.mail.srv.osa [10.202.2.69]) by gateway1.nyi.mail.srv.osa (Postfix) with ESMTP id A6A7D206BF for <[redacted]>; Wed, 29 May 2013 16:26:06 -0400 (EDT)
Received: by imap19.nyi.mail.srv.osa (Postfix, from userid 501) id A1D2E220145; Wed, 29 May 2013 16:26:06 -0400 (EDT)
Received: from compute5.internal (compute5.nyi.mail.srv.osa [10.202.2.45]) by sloti19d2p1 (Cyrus git2.5+0-git-fastmail-9272) with LMTPA; Wed, 29 May 2013 16:26:06 -0400
Received: from mx2.nyi.mail.srv.osa ([unixlocal]) by compute5.internal (LMTPProxy); Wed, 29 May 2013 16:26:06 -0400
Received: from cs-smtp-2.Stanford.EDU (cs-smtp-2.Stanford.EDU [171.64.64.26]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx2.messagingengine.com (Postfix) with ESMTPS id 343A26C03AC for <[redacted]>; Wed, 29 May 2013 16:26:02 -0400 (EDT)
Received: from mail.tu-berlin.de ([130.149.7.33]) by cs-smtp-2.Stanford.EDU with esmtps (TLSv1:AES256-SHA:256) (Exim 4.77) (envelope-from noreply@cs.stanford.edu) id 1UhmwN-000518-0K; Wed, 29 May 2013 13:25:52 -0700
Received: from [204.93.59.2] (helo=[10.254.8.60]) by mail.tu-berlin.de (exim-4.72/mailfrontend-7) with esmtpsa [TLSv1:AES256-SHA:256] id 1Uhmri-0000EC-0L; Wed, 29 May 2013 22:21:02 +0200
X-Received: by 10.58.85.134 with SMTP id h6mr2788483vez.18.1369859170090; Wed, 29 May 2013 13:26:10 -0700 (PDT)
Return-Path: noreply@cs.stanford.edu
Received-Spf: neutral (google.com: 66.111.4.223 is neither permitted nor denied by best guess record for domain of noreply@cs.stanford.edu) client-ip=66.111.4.223;
Authentication-Results: mx.google.com; spf=neutral (google.com: 66.111.4.223 is neither permitted nor denied by best guess record for domain of noreply@cs.stanford.edu) smtp.mail=noreply@cs.stanford.edu
X-Sieve: CMU Sieve 2.4
X-Spam-Score: 1.6
X-Spam-Hits: BAYES_99 3.5, HTML_MESSAGE 0.001, MISSING_MID 0.497, RCVD_IN_DNSWL_MED -2.3, T_RP_MATCHES_RCVD -0.01, LANGUAGES en, BAYES_USED user, SA_VERSION 3.3.2
X-Spam-Source: IP=’171.64.64.26′, Host=’cs-smtp-2.stanford.edu’, Country=’US’, FromHeader=’edu’, MailFrom=’edu’
X-Spam-Charsets: plain=’iso-8859-1′, html=’iso-8859-1′
X-Resolved-To: [redacted]
X-Delivered-To: [redacted]
X-Mail-From: noreply@cs.stanford.edu
X-Tubit-Incoming-Ip: 204.93.59.2
Content-Type: multipart/alternative; boundary=”===============2107424360==”
Mime-Version: 1.0
X-Pmx-Version: 6.0.0.2142326, Antispam-Engine: 2.7.2.2107409, Antispam-Data: 2013.5.29.200920
X-Pmx-Spam: Gauge=IIIIIII, Probability=0%, Report=”
X-Remote-Spam-Score: 0.5
X-Remote-Spam-Level:
X-Remote-Spam-Checker-Version: SpamAssassin on cs-smtp-2.Stanford.EDU
X-Scan-Signature: 5257551a17fe2eabeabf44262ae65875
Message-Id: <cmu-lmtpd-10228-1369859166-3@sloti19d2p1>
Computer Science- Web Upgrade
