University of Victoria.

The other subjects for this phish could be ‘UNIVERSITY OF VICTORIA.’ or ‘University of Victoria Webmail’

This phish uses scary tactic to bait you into clicking the link. If you hover over the link you would notice the beginning of the link is made to look like it is from UVic but it is hosted on an external domain and have spelling errors, and most importantly not legit. The sender address is external. Even though the sender address seems to be a legitimate University of Toronto account but these addresses can be spoofed to increase the authenticity of the email. In any case, a sender from a different university would not send legitimate email upgrade notifications, and the link does not go to either www.uvic.ca or a Microsoft site.

Never be in a hurry to click the links in the emails, just because it says so. Always look for signs that would make an email illegit.