Phish Bowl

A collection of scam emails and other suspicious communications.
rss feed

Phishing Email (on campus)

From: PayPal Support <paypal @server.sanvil.cc>
Date: Sun, Nov 26, 2017 at 7:28 AM
Subject: Due to suspicious activity, your account has been temporarily locked.

Posted: 12/7 10:19am
Phishing Email (on campus)

From: OPR Science <agnes.oeschger @bluewin.ch>
Subject: Invoice #46117035/DEF#GXYOM/2017 (04 Dec 17)
Date: December 4, 2017 at 7:15:10 AM EST
To: Josiah_Carberry @brown.edu

Posted: 12/4 1:11pm
Phishing Email (on campus)

From: Jay Calhoun <checkinganna @gmail.com>
Date: Wed, Nov 29, 2017 at 11:09 AM
Subject: Hello Josiah.
To: Josiah_Carberry @brown.edu

Posted: 11/29 11:40am
Legitimate Email

From: bursar_billing@brown.edu
Date: Thu, Nov 9, 2017 at 4:02 PM
Subject: Brown University Student Account Activity Notice

Posted: 11/20 8:21am
Phishing Email (on campus)

From: ITS service  <hotmstr @vanderbilt.edu>
Date: Sun, Nov 19, 2017 at 9:27 AM
Subject: Brown Information Technology
To: [ Brown email addresses ]

Posted: 11/19 1:17pm
Phishing Email (on campus)

From: Shantala Contara <orydeya @ua.fm>
Date: Thu, Nov 16, 2017 at 6:21 AM
Subject: Invoice due, number 8611729/QK#HWZR/2017 (16 Nov 17)
To: [ Brown email address ]

Dear ,

Posted: 11/16 8:40am
Legitimate Email

We have received questions about this email from UnitedHealthCare Student Resources, which is a legitimate notification from them.

Posted: 11/13 2:50pm
Phishing Email (on campus)

Beware of requests to immediately wire funds that arrive through suspicious emails that are full of grammatical errors and typos, have a mismatch on the sender's name and email address, and stress urgency.

Posted: 11/13 12:50pm
Phishing Email (on campus)

A phishing email reported today with the classic tell-tale signs: missing recipient address, threat if no action taken quickly, grammar errors, from "IT Service Desk S

Posted: 11/10 12:57pm
Phishing Email (in the wild)

Netflix subscribers are being targeted with a well-executed phishing email telling them their account has been suspended and trying to get their login information and credit card data.

Posted: 11/7 1:40pm
Phishing Email (on campus)

From: stunned hacker <hackerstunned @gmail.com>
Date: Wed, Oct 18, 2017 at 9:09 PM
Subject: hello
To: [ Brown email addresses ]

Posted: 10/18 3:43pm
Phishing Email (on campus)

From: Gmaili+ Update Security [mailto:67293 @cag.edu.gt] 
Sent: Wednesday, October 18, 2017 12:30 PM
Subject: Avoid being locked out of your mail

[Inline image 1]

Posted: 10/18 1:23pm
Phishing Email (on campus)

From: <GoogleAccount @server06.accounttsupport.com>
Date: Thu, Oct 12, 2017 at 6:43 AM
Subject: Upgrade Your Mail Box [Brown email address] To Continue Using Your Email

Posted: 10/12 8:41am
Legitimate Email

Occasional military recruiters will send email solicitations to Brown students, such as the following example. These are legitimate and allowed by law.

Posted: 9/29 12:54pm
Phishing Email (on campus)

From: Admin Support <savannah.brosius @wsu.edu>
Date: Thu, Sep 21, 2017 at 3:02 PM
Subject: Please Verify
To: [ Brown address ]

Posted: 9/27 12:10pm
Phishing Email (on campus)

From: LASHANDA D. SANTIAGO <Lashanda.Santiago @eskenazihealth.edu>
Date: Thu, Sep 21, 2017 at 9:48 AM
Subject: RE: Hr management Announcements (Microsoft Warning Alert)

Posted: 9/21 1:48pm
Phishing Email (on campus)

Stay alert for phony wire transfer requests which surface at Brown periodically, usually targeting individuals who work in financial or senior level offices.

Posted: 9/20 9:05pm
Phishing Email (on campus)

From: Outlook Web App <threefasthounds @centurylink.net>
Date: Wed, Sep 20, 2017 at 8:41 AM
Subject: IT Help Desk !
To: 

Important information from Outlook Web App Security Service.

Posted: 9/20 9:04am
Phishing Email (on campus)

From: AppIe <blarand@sodamixerz.com>
Subject: We noticed unusual activity from your account
Date: September 17, 2017 at 1:58:38 AM EDT

Posted: 9/18 9:23am
Phishing Email (on campus)

From: dave.rainville @ricoh-usa.com <donotreply @iofficecorp.com>
Date: Thu, Sep 14, 2017 at 5:48 AM
Subject: Asset Meter Reads
To: [ Brown email address ]

Posted: 9/14 8:45am
Phishing Email (on campus)

From: AppIe <vipinted @xertiamon.com>
Subject: Your AppIe ID Information has been disabled
Date: September 10, 2017 at 5:00:28 PM EDT
To: [Brown email address]

Dear Customer, 

Posted: 9/11 8:51am
Phishing Email (on campus)

From:
G_Apps Administrator <67161 @cag.edu.gt> OR
GAdmin Security <56861 @cag.edu.gt> OR

Posted: 9/6 1:48pm
Phishing Email (in the wild)

US-CERT* warns everyone to remain vigilant for malicious cyber activity seeking to capitalize on interest in Hurricane Harvey.

Posted: 8/28 4:50pm
Phishing Email (on campus)

From: <andi540724@aol.com>
Date: Aug 25, 2017 1:34 PM
Subject: Review Project #Lot 42422
To: 
Cc: 

Posted: 8/28 9:06am
Phishing Email (on campus)

Beware of unsolicited job offers with vague promises as they could be a job scam trying to get your personal information as well as your money.

Posted: 8/17 10:39am
Legitimate Email

There have been several reports of emails from "aSuggestion", a service that allows the anonymous sharing of ideas with designated organizations (a kind of anonymous sugg

Posted: 7/25 12:25am
Phishing Email (on campus)

From: Lauren Miller <eren.arslan @web.de>
Subject: Please pay your invoice with id number: 1378343
Date: July 24, 2017 at 2:43:16 PM EDT
To:  < Brown address >

Good Day ,

Posted: 7/24 11:33pm
Phishing Email (on campus)

Look Before You Link: An offer for free materials to add to your web page may seem like a good deal and an opportunity to do help someone out, but it might not add any value and instead direct your visitors to a locat

Posted: 7/19 10:34am
Phishing Email (on campus)

The "Tutor Scam", now in circulation at Brown, is an example of targeted social engineering that tries to establish a relationship and gain your trust, often leading to check scams.

Posted: 6/30 10:39am
Phishing Email (in the wild)

The Internal Revenue Service (IRS) warns of various types of scams that may target taxpayers this summer, including robocalls, demands for immediate payment, and threats to have taxpayers arrested immediately.

Posted: 6/28 9:12am

Pages