Phish Bowl

From: Christina Hull Paxson <brown.president.edu@gmail.com>
Date: Sat, Jun 27, 2020, 11:58 a.m.
Subject: Quick response

From: <fedgrantagent010@gmail.com>
Date: Wed, Jun 24, 2020 at 11:13 AM
Subject: 2020/2021 Faculty Evaluation

An example of the new Gmail anti-spoofing warning message has been reported, providing an excellent opportunity to remind Phish Bowl readers of the service activated on Thursday, June 18th.

From: williams roland <wil.rol10@gmail.com>
Sent: Thursday, June 4, 2020 12:28 PM

From: Support on behalf of HR <op@cs.brown.edu>
Date: Mon, Jun 1, 2020 at 4:59 PM
Subject: payroll

This phishing email is similar to the post "How are you? ...

The following is a legitimate notification of a Zoom update scheduled for May 30th and announced in Today@brown on May 20th.

From: Gerik Grant <soulfullpromotions@gmail.com>
Date: Fri, May 29, 2020 at 12:46 PM
Subject: Job Notification.

From: Sara Walsh <text.voice.mobile@gmail.com>
Date: Tue, 26th May 2020
Subject: Quick one

From: <DoNotReply@loyaltygateway.com>
Date: Tue, May 26, 2020 at 1:02 AM
Subject: Your Order Confirmation

From: <brianthom2020@gmail.com> or <harrisbrian581@gmail.com>
Date: Mon, May 25, 2020 at 10:00 AM

The following is an example of a Critical Review survey, sent to Brown students for each course that was eligible for review, and is the first year this process went digital.

--- 

The following are a couple of examples of notifications sent through HireRight, who has partnered with Brown University to conduct background verifications.

From: Christina Hull Paxson <islandmuse@twc.com>
Date: Mon, May 18, 2020 at 12:02 PM
Subject: Urgent!

From: Ryan Welter <ryannwilliamss211@gmail.com>
Date: Wed, May 13, 2020 at 1:00 PM
Subject: URGENT: Data Analyst Needed ASAP!
To:

From: Trevor Culhane <owens0101@gmail.com>
Date: Mon, May 11, 2020 at 5:43 PM
Subject: BROWN HIRING
To:

From: Takao Watanabe <watanabet851@gmail.com>
Date: Wed, May 6, 2020 at 3:20 PM
Subject:

From: Lisa Gartrell <lisa32ul@gmail.com>
Date: Thu, Apr 30, 2020 at 12:29 PM
Subject: BROWN REMOTE PART-TIME JOB OFFER

Hypothectically, if you received the following email exchange, at what point might you become suspicious that not everything is as it seems?

Ever wonder what might happen if you responded to a phishing email, such as the one reported last week from CoreStaff Services?

From: Josephine Carberry (via Google Drive) <sdcg.six@gmail.com>
Date: Wed, Apr 22, 2020 at 4:43 PM
Subject: Faculty Evaluation.pdf

A carefully constructed phishing email is now in circulation at Brown, looking like a legitimate notification from the IT Service Center but is actually just a clever ploy to get your username, password and "Brown Ema

From: Larry Larson <lawrence.larson.brown@gmail.com>
Date: Mon, Apr 20, 2020 at 12:54 PM
Subject: Immediate Attention!

From: Marion Wasser <wasserm226@gmail.com>
Date: Fri, Apr 17, 2020 at 5:45 PM
Subject: BROWN STUDENT REMOTE PART TIME JOB OFFER

The following four addresses were reported over the last three days -- more variations on the impersonator phishing scam.

As we approach the traditional tax season, be on the lookout for phishing emails about adjustments to your pay and tax announcements, such as the following example.

From: Victoria Christensen <vaicuong1996@gmail.com> [ or <hilescmnmary@gmail.com> ]

Our increased dependency on technology during this period of self-isolation, especially our heavy reliance on Zoom, has not been overlooked by cyber criminals.

From: Elliott Parker <variantaustin47@gmail.com>
Date: March 31, 2020 at 1:10:14 PM EDT

One of the newest Coronavirus-related phishing emails spoofs a hospital notification that warns of exposure to COVID-19 through contact with a "colleague/friend/family member", directing the recipient to download an a