Phish Bowl

A collection of scam emails and other suspicious communications.

rss feed

Phishing Email (on campus)

Beware of the latest phone scam from a caller asking for organizational information, claiming to be from HR and providing a Brown staff member name that does not match the phone number in the online directory.

Posted: 9/17 11:47am
Phishing Email (on campus)

Look out for job offers, like the following, that appear too good to be true (they usually are).

Posted: 9/10 1:48pm
Phishing Email (on campus)

Beware of calls that appear to be coming from the Chinese Consulate that leave a repeated message in Mandarin, from numbers such as +12122449399 and +12122448293 but also with various area codes and prefixes.

Posted: 9/10 12:57pm
Phishing Email (on campus)

Your phone rings -- you glance at the caller ID and notice that the number looks similar to yours -- so you answer it assuming it's someone you know but haven't put in your contact list yet.

Posted: 8/31 4:08pm
Phishing Email (on campus)

From: cmitten@atomicmachines.com <cmitten@atomicmachines.com>
Date: Thu, Aug 23, 2018 at 1:01 AM

Posted: 8/23 9:02am
Legitimate Email

Members of the Brown community continue to report having received a phishy message from BrightCrowd.

Posted: 8/21 12:16am
Phishing Email (on campus)

In this clever scam, the sender referenced an actual Dell order that had payment processing issues and provided the correct associated number.

Posted: 7/18 11:43am
Phishing Email (on campus)

From: BROWN UNIVERSITY HELP DESK [various @yahoo addresses] OR
MIDLAND COLLEGE HELP DESK stevemark695@yahoo.co.uk

Posted: 7/12 11:51am
Phishing Email (on campus)

In an interesting twist on ransomware, scammers are sending emails that claim malware has been downloaded to your computer after you visited a porn site, triggering a recording of you via your webcam watching the site

Posted: 7/12 10:58am
Phishing Email (on campus)

Last summer we posted a warning from the Internal Revenue Service (IRS) about various types of scams that may target taxpayers this summer, inc

Posted: 7/10 3:04pm
Phishing Email (on campus)

Another variation on the "I need you to perform a quick task for me" phishing scam, whose hallmarks are: from a familiar name, a

Posted: 7/9 1:35pm
Phishing Email (in the wild)

It starts as an urgent pop-up warning -- like the one below -- that directs you to install the Advanced Battery Saver app from the Google Play Store.

Posted: 6/22 1:59pm
Phishing Email (on campus)

From: Sandy Isenstadt <gg376ff1@gmail.com>
Date: Wed, Jun 20, 2018 at 12:27 PM
Subject: Confirm

Posted: 6/22 9:32am
Phishing Email (on campus)

From: David Walker <davidwalker0199@gmail.com>
Date: Mon, Jun 18, 2018 at 11:42 AM
Subject: Administrative Support
To:

Attn

Posted: 6/18 12:09pm
Phishing Email (on campus)

From: Gauthier, Nancy <nancy.gauthier@ucdsb.on.ca>
Date: Wed, May 16, 2018 at 5:48 AM
Subject: IT System Support !!!

Posted: 5/16 9:06am
Phishing Email (on campus)

From: OPR Science <alam@atzplanet.com>
Subject: OPR Science For Check No: 32034219236
Date: May 15, 2018 at 9:48:57 AM EDT

Posted: 5/15 9:21am
Phishing Email (on campus)

From: Facebook <firstusacapital@gmail.com>
Date: Sat, May 5, 2018, 12:23 PM
Subject: Alert

Posted: 5/7 2:43pm
Phishing Email (on campus)

This Microsoft/Google Chrome critical warning spotted today contains a few suspicious characteristics that should clue you in to avoid its request for your rapid response. How many can you find?

Posted: 5/1 2:59pm
Phishing Email (on campus)

From: Microsoft Support <outlookwebserrvice060@utk.edu>
Date: Fri, Apr 27, 2018 at 4:40 AM
Subject: Important online activity review

Posted: 4/27 2:13pm
Phishing Email (on campus)

From: Powell, Stephanie <LANGLEYS@ecu.edu>
Date: Tue, Apr 24, 2018, 18:24
Subject: You Have Been sent a File Using Dropbox

Posted: 4/24 7:54pm
Phishing Email (on campus)

Beware a phish from the "IT_Support / IThelpdesk / IT Department" about a supposed "System Upgrade" that links you to the "new Office365 Lite." If you receive this email, do not respond to it nor click on the link.

Posted: 4/20 4:07pm
Phishing Email (on campus)

Do you know how to spot a phony DocuSign request? The following email failed the first indicator of a real one: it did not have the unique security code at the bottom of the email.

Posted: 4/17 11:09am
Phishing Email (on campus)

The following solicitation from MedCraveOnline for submissions to their Sociology International Journal set off a few red flags (can you spot them?) and an inquiry into

Posted: 4/11 1:52pm
Phishing Email (on campus)

From: Marco Martins <pc@dahnaylogix.com>
Date: Mon, Apr 2, 2018 at 8:13 AM
Subject: Southwire TET 307326383

Posted: 4/2 10:14am
Phishing Email (on campus)

Sounds too good to be true + Causes your "Spidey Sense" to tingle because something is off + Asks for personal information + Multiple typos and gramm

Posted: 3/28 4:44pm
Phishing Email (on campus)

From: Lauren Miller <u3193322@uni.canberra.edu.au>
Date: Wed, Mar 28, 2018 at 7:40 AM
Subject: Invoice #49277028 from Lauren Miller

Posted: 3/28 11:06am
Phishing Email (on campus)

The wire transfer scam targeting financial officers is a persistent one, with variations on it continuing to be reported at Brown.

Posted: 3/27 10:06am
Phishing Email (on campus)

If you fall prey to a toner scam (see earlier Phish Bowl posts), the deal you thought you'd agreed to might become a rip-off like the following example,

Posted: 3/26 2:36pm
Phishing Email (on campus)

From: Renu Jha <renujha723@gmail.com>
Date: March 22, 2018 at 7:23:45 AM EDT
To: renujha723@gmail.com

Posted: 3/22 9:12am
Phishing Email (on campus)

If you've received a mysterious calendar invite from an address like unknownorganizer@calendar.google.com for an event that has you scratching your head, you m

Posted: 3/21 1:23pm

Pages