I received a pretty crappy attempt to get me to give up access to my lifetime Stanford computer science department email address. I hope no one falls for this!
From: Stanford University
Subject: Computer Science- Web Upgrade Date: May 29, 2013 1:20:01 PM PDT To: you Reply-To: firstname.lastname@example.org
This email is being sent to you because of violation security breach that was detected by our servers. Our server detected that one of the messages you received from a contact has already infected your mail with a dangerous virus.
You can no longer be allowed to send messages or files to other users to prevent the spread of virus to other @cs.stanford.edu mail users. Please follow the link below to perform maintenance work needed to improve the protection of the web-mail for us to verify and have your account cleared against this virus.
WARNING!!! E-MAIL OWNERS who refuses to upgrade his or her account within 48hrs after notification of this update will permanently be deleted from our data base and can also lead to malfunctioning of the client or user's account and we will not be responsible for loosing your account.
The link goes to: http: //www.123contactform.com/form-591874/Web-Upgrade (I didn't click on it)
The full headers are below:
To: you Reply-To: email@example.com Delivered-To: [redacted] Received: by 10.194.174.6 with SMTP id bo6csp23125wjc; Wed, 29 May 2013 13:26:10 -0700 (PDT) Received: from forward1-smtp.messagingengine.com (forward1-smtp.messagingengine.com. [188.8.131.52]) by mx.google.com with ESMTPS id fd1si22565649vcb.65.2013.05.29.13.26.09 for <[redacted] data-preserve-html-node="true"> (version=TLSv1 cipher=RC4-SHA bits=128/128); Wed, 29 May 2013 13:26:10 -0700 (PDT) Received: from imap19.nyi.mail.srv.osa (imap19.nyi.mail.srv.osa [10.202.2.69]) by gateway1.nyi.mail.srv.osa (Postfix) with ESMTP id A6A7D206BF for <[redacted] data-preserve-html-node="true">; Wed, 29 May 2013 16:26:06 -0400 (EDT) Received: by imap19.nyi.mail.srv.osa (Postfix, from userid 501) id A1D2E220145; Wed, 29 May 2013 16:26:06 -0400 (EDT) Received: from compute5.internal (compute5.nyi.mail.srv.osa [10.202.2.45]) by sloti19d2p1 (Cyrus git2.5+0-git-fastmail-9272) with LMTPA; Wed, 29 May 2013 16:26:06 -0400 Received: from mx2.nyi.mail.srv.osa ([unixlocal]) by compute5.internal (LMTPProxy); Wed, 29 May 2013 16:26:06 -0400 Received: from cs-smtp-2.Stanford.EDU (cs-smtp-2.Stanford.EDU [184.108.40.206]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx2.messagingengine.com (Postfix) with ESMTPS id 343A26C03AC for <[redacted] data-preserve-html-node="true">; Wed, 29 May 2013 16:26:02 -0400 (EDT) Received: from mail.tu-berlin.de ([220.127.116.11]) by cs-smtp-2.Stanford.EDU with esmtps (TLSv1:AES256-SHA:256) (Exim 4.77) (envelope-from ) id 1UhmwN-000518-0K; Wed, 29 May 2013 13:25:52 -0700 Received: from [18.104.22.168] (helo=[10.254.8.60]) by mail.tu-berlin.de (exim-4.72/mailfrontend-7) with esmtpsa [TLSv1:AES256-SHA:256] id 1Uhmri-0000EC-0L; Wed, 29 May 2013 22:21:02 +0200 X-Received: by 10.58.85.134 with SMTP id h6mr2788483vez.18.1369859170090; Wed, 29 May 2013 13:26:10 -0700 (PDT) Return-Path: Received-Spf: neutral (google.com: 22.214.171.124 is neither permitted nor denied by best guess record for domain of firstname.lastname@example.org) client-ip=126.96.36.199; Authentication-Results: mx.google.com; spf=neutral (google.com: 188.8.131.52 is neither permitted nor denied by best guess record for domain of email@example.com) firstname.lastname@example.org X-Sieve: CMU Sieve 2.4 X-Spam-Score: 1.6 X-Spam-Hits: BAYES_99 3.5, HTML_MESSAGE 0.001, MISSING_MID 0.497, RCVD_IN_DNSWL_MED -2.3, T_RP_MATCHES_RCVD -0.01, LANGUAGES en, BAYES_USED user, SA_VERSION 3.3.2 X-Spam-Source: IP='184.108.40.206', Host='cs-smtp-2.stanford.edu', Country='US', FromHeader='edu', MailFrom='edu' X-Spam-Charsets: plain='iso-8859-1', html='iso-8859-1' X-Resolved-To: [redacted] X-Delivered-To: [redacted] X-Mail-From: email@example.com X-Tubit-Incoming-Ip: 220.127.116.11 Content-Type: multipart/alternative; boundary="===============2107424360==" Mime-Version: 1.0 X-Pmx-Version: 18.104.22.1682326, Antispam-Engine: 22.214.171.1247409, Antispam-Data: 2013.5.29.200920 X-Pmx-Spam: Gauge=IIIIIII, Probability=0%, Report='' X-Remote-Spam-Score: 0.5 X-Remote-Spam-Level: X-Remote-Spam-Checker-Version: SpamAssassin on cs-smtp-2.Stanford.EDU X-Scan-Signature: 5257551a17fe2eabeabf44262ae65875 Message-Id: Computer Science- Web Upgrade