Phish Bowl

A collection of scam emails and other suspicious communications.

rss feed

Phishing Email (on campus)

The responses in the following thread should look familiar to frequent visitors of the Phish Bowl and offer an opportunity to see how the scam progresses.

Posted: 01/16/2019 - 4:28pm
Phishing Email (on campus)

From: Christina Hull Paxson <>
Date: Tue, Jan 15, 2019 at 7:56 AM
Subject: Hi are you there 

Posted: 01/15/2019 - 9:32am
Phishing Email (on campus)

From: Patrick Heller <>
Date: Sat, Jan 12, 2019 at 5:35 PM
Subject: Re: Hello

Posted: 01/15/2019 - 9:30am
Phishing Email (on campus)

From: Anthony Cokes <>
Date: Mon, Jan 14, 2019 at 5:39 PM

Posted: 01/15/2019 - 8:24am
Phishing Email (on campus)


From: "Paul G. Williard" <>
Date: January 14, 2019 at 11:31:26 PM

Posted: 01/15/2019 - 8:15am
Phishing Email (on campus)

From: Richard Rambuss <>
Date: Tue, Jan 8, 2019 at 5:36 PM
Subject: Hello

Posted: 01/08/2019 - 5:45pm
Legitimate Email

The following is an example of a legitimate Google security notification, warning the recipient of suspicious activity occurring with their account.

Posted: 01/08/2019 - 2:40pm
Phishing Email (on campus)

Another variation on the "malware sextortion" scam, with this one including an old password in the receiver's address.

Posted: 01/07/2019 - 10:57am
Phishing Email (on campus)

From: Thomas A.lewis <>
Subject: Happy holidays and Happy New Year?

Posted: 01/03/2019 - 10:23am
Phishing Email (on campus)

From: Christina Paxson <>
Subject: Urgent
Date: December 21, 2018 at 6:08:39 AM EST

Posted: 12/21/2018 - 8:51am
Phishing Email (in the wild)

While not reported here at Brown, other institutions that include universities * have been inundated with emails about phony bomb threats, in which the sender requests a sizab

Posted: 12/13/2018 - 3:14pm
Updated: 12/13/2018 - 8:45pm
Phishing Email (on campus)

The following brief email, reported by one of the people blindcopied on it, is most probably the first step in a phishing scam to hook those not paying attention to the header details.

Posted: 12/06/2018 - 2:57pm
Phishing Email (on campus)

Look out for job offers, like the following, that appear too good to be true (they usually are).

Posted: 11/30/2018 - 10:27am
Phishing Email (on campus)

From: Kevin McLaughlin <>
Date: Wed, Nov 28, 2018 at 6:34 PM

Posted: 11/19/2018 - 10:48am
Phishing Email (on campus)

The following alert, supposedly from Facebook, was reported today, providing a number of clues to its inauthenticity. Here are a few, can you spot any others?

Posted: 11/16/2018 - 1:04pm
Phishing Email (on campus)

From: Mark Spencer (via Google Drive) <>
Date: Fri, Nov 16, 2018 at 11:20 AM
Subject: Doc701234.docx

Posted: 11/16/2018 - 11:53am
Phishing Email (on campus)

Sent: Thursday, November 15, 2018 3:36 PM

Posted: 11/16/2018 - 11:47am
Phishing Email (on campus)

The ever popular "Are you available" phishing scam has been reported with a new twist: not only using a familiar Brown name and email address (though rendered improperly, see below) but also their picture.*

Posted: 11/15/2018 - 1:57pm
Phishing Email (on campus)

The Malware Sextortion Scam lives on in newly-reported phishing emails that threaten to send "cra‌zy i‌mage‌s fro‌m yo‌ur dark secret li‌fe‌" and block yo‌u‌r syste‌m if you do not reply within 48 ho‌u‌rs.

Posted: 11/14/2018 - 1:49pm
Phishing Email (on campus)

The following spoofed email -- targeting some at Brown with the request "to do something for me a ASAP" -- tries to trick the recipient into thinking it is from someone they know.

Posted: 11/14/2018 - 11:46am
Phishing Email (on campus)

The "Chinese Consulate" call is back (see 9/10 Phish Bowl post), with the same repeated message in Mandarin but with new numbers and differen

Posted: 11/13/2018 - 11:36am
Phishing Email (on campus)

Be on the lookout for a scam that first appeared back in the 70's -- dubbed "phoner toner" -- which was recently reported here at Brown.

Posted: 11/12/2018 - 10:28am
Phishing Email (on campus)

Phishing tip: Make sure the email sender's address passes the "domain test".

Posted: 11/02/2018 - 4:31pm
Phishing Email (on campus)

From: Amazon <>
Date: Tue, Oct 30, 2018 at 6:19 PM
Subject: Amazon Account Suspened

Posted: 10/31/2018 - 8:57am
Phishing Email (on campus)

From: Jane Pisasale via Adobe Document Cloud <>
Date: Tue, Oct 30, 2018 at 7:50 AM
Subject: Executed Contract

Posted: 10/30/2018 - 10:36am
Phishing Email (on campus)

We continue to receive reports of emails that threaten to send videos of their victims to their contacts unless the victims send them hundreds of dollars in bitcoins within 48 hours.

Posted: 10/24/2018 - 9:21am
Phishing Email (on campus)

From: Gregory Fletcher <>
Date: Mon, Oct 15, 2018 at 12:26 PM
Subject: Re: ACH payment

Posted: 10/15/2018 - 1:00pm
Phishing Email (on campus)

From: Jana Doe <>
Date: Mon, Oct 15, 2018 at 8:10 AM

Posted: 10/15/2018 - 11:10am
Phishing Email (on campus)

From: Doug Thomson <>
Date: Fri, Sep 28, 2018 at 5:54 PM
Subject: Re: Meeting on Tuesday

Posted: 09/29/2018 - 9:37am
Phishing Email (on campus)

Another scam hitting University phones to avoid:  a robocall that warns your account has been suspended and you need to respond to the call for your account to be reactivated.

Posted: 09/25/2018 - 3:28pm