Penn Staters continue to receive variations of a phishing campaign that first showed up in early March of 2017. That message, reported in this linked post, looks the same as messages received today. The only difference in the messages is that the new ones direct users to a fake WebAccess page in the gdsecuritysolutions.com domain.