Phish Bowl

From: Emily Coker <emily.coker25 @uga.edu>
Date: Mon, Sep 26, 2016 at 1:48 PM
Subject: VERIFY
To:  [ lengthy list of @brown.edu addresses ]

Another "wire transfer hoax" email has been reported, similar to others reported every couple of months (cyber criminals "spoof" well-know email addresses to try and trick recipients).  Like those emails (see

From: protons atomik <platfromacreative @gmail.com>
Date: Fri, Sep 23, 2016 at 5:51 AM
Subject: Master of Engineering
To: [ Brown addresses ]

Good day

Dear [ Name ]

A detailed but suspicious email was reported that appears to come from Apple, warning that your Apple ID was used to sign into iCloud, but is actually a phishing attempt.

From: "Mail Service" <olesya.saveleva @nyfa.edu>
Date: Sep 21, 2016 6:36 PM
Subject: HACKER WARNING:
To:
Cc:

[  No text, just attachment "Brown.EDU.pdf" ]

From: Collantes, Anthony <ac674 @njit.edu>
Date: Saturday, September 17, 2016
Subject: Message from Information Security: Your email account has been compromised
To: 

From: hr_Dept @brown.edu <kkcarson @peoplepc.com>
Date: Mon, Sep 12, 2016 at 11:28 AM
Subject: Account Update
To:

From: Fatani, Jameel <fatanij @student.swosu.edu>
Date: Mon, Sep 5, 2016 at 6:05 PM
Subject: UPDATE YOUR MAIL BOX
To: 

From: "Tang, Jay" <jay_tang @brown.edu>
Date: September 5, 2016 at 12:53:48 PM EDT
To: undisclosed-recipients:;
Subject: very important

From: Hulikal Sampath Kumaran, Srivatsan <srivatsan_hulikal @brown.edu>
Date: Thu, Sep 1, 2016 at 12:03 PM
Subject: proof of payment
To: 

The Center for Learning & Professional Development inadvertently sent an email to a larger group than intended; if you received it and didn't previously attend an informational session, please disregard it.

A classic phishing scam returns, signalling that the start of a new academic year can't be far away.

From time to time we receive questions about the authenticity of email solicitations from Academia.edu, such as the following request to approve a co-author tag.

This announcement from the US Army TEC Recruiter should be ignored or marked as spam, and if interested in military commissioning opportunities, you should instead contact Karen McNeil of the Office of Student Veteran

From: Administrator helpd @bigpond.com <hemantsonare @gmail.com>
Date: Mon, Aug 22, 2016 at 11:57 AM
Subject: Attention Web-Mail User
To:

From: Ambani, Anant <anant_ambani @brown.edu>
Date: Fri, Aug 19, 2016 at 12:26 PM
Subject: NAMES...
To: 

Here are the Names of student that were tested Positive of HIV...

From: Brown University <vissav01 @uoguelph.ca>
Date: Wed, Aug 17, 2016 at 6:13 AM
Subject: ID:133 - MyBrown Updates!
To: 

Brown Wants You!

From: Stephanie Miller <stephanie @studentspill.org>
Date: Thursday, August 11, 2016
Subject: Invitation
To: [actual Brown addresses]

Hello [first name],

From: Kazuaki Tanahashi <tanahashi @aol.com>
Date: Tue, Jul 26, 2016 at 10:41 AM
Subject: From Kazuaki Tanahashi......... Please help!!!
To:  [ Brown addresses ]

From: Smith, Joshua
Date: Thu, Jul 28, 2016 at 12:59 PM
Subject: RE: Staff: New Email System Posted today July 29, 2016

From: Brown University Post Office <926200 @isd624.org>
Date: Mon, Jul 18, 2016 at 10:17 AM
Subject: Package
To:​​

Hello,

From: <GoogleDocs @email-noreply.com>
Date: Thu, Jul 14, 2016 at 1:47 PM
Subject: Notification: New secure message @ Thu Jul 14, 2016
To:  <brown address >

From: Technical Support © <aajaaj @g.clemson.edu>
Date: Mon, Jul 11, 2016 at 2:25 PM
Subject: Your Education Email Support Alert
To: educationreply @onlineemail.gmail.com

From: Ali, Khader <Khader.Ali @ecolab.com>
Date: Mon, Jul 11, 2016 at 9:07 AM
Subject: RE: Important Notice to all Staff/employees about new financial grant initiative.

From: IT Services <noreply @qemailserver.com>
Date: Thu, Jul 7, 2016 at 3:21 PM
Subject: 6 incoming messages blocked
To: Xxxx_Xxxxxx @brown.edu

From: "iCloud No.3958" <azbdhi @sina.com>
Subject: Lost mode phone has been found now.
Date: July 6, 2016 at 8:33:10 PM ADT
To:  [ your name and email address ]

Another "wire transfer hoax" email has been reported this afternoon, and like similar emails (see 5/25 post), you should report it t

Two recent reports on a classic phishing subject: running out of mailbox space and the need to "re-validate" to continue receiving email.

Emails from HonorSociety.org, while not malicious, belong in your Spam folder, even though the site and its social media pages might look convincing.

From: Yahoo! hassiet_asberom @brown.edu or Shi, Carol <carol_shi @brown.edu>
Date: Wed, Jun 22, 2016 at 7:42 PM
Subject: Read asap
To: 

Hi All,