Phish Bowl
A collection of scam emails and other suspicious communications.
From: Delta Air Lines <orders @deltaa.com>
Date: Tue, Apr 18, 2017 at 10:20 AM
Subject: Your order 68052460 with Delta Air Lines has been confirmed!
To: (Brown address)
Beware of phone calls from individuals requesting printer serial or model numbers, often with the claim that they are checking or updating machines and need the number to process the request.
Various students have reported receiving an email from Campus Storage with offers for summer storage options. This company is not affiliated with Brown Student Agencies nor has it been vetted for legitimacy by them.
Today's mailing about the "Real Appeal" program to United Healthcare members is the "real deal" - details are available at
Be on guard against a phone phishing scam reported to us that starts with a call from someone claiming to be from the local FBI office.
The following is a sample notification sent regarding ORCID, used at Brown and elsewhere to create identifiers for publication/research activities.
From: Evelyn Maxwell <Evelyn.Maxwell @flumc.org>
Date: Mon, Mar 13, 2017 at 11:35 AM
Subject: RE: ITS-Helpdesk
To: Evelyn Maxwell <Evelyn.Maxwell @flumc.org>
If past years are any indication, there will be an increased number of phishing scams and malware campaigns this US tax season you should be prepared for.
This followup email to yesterday's mailing about new BOA PCards is also a legitimate notification sent on behalf of the Controller's Office, givin
Today's mailing regarding new BOA PCards replacing the current JP Morgan cards (expiring March 17) is a legitimate notification from the Controller's Office.
The following is a legitimate notification from nextSource, Brown's partner for temporary hiring.
We received some questions about this email, which is from the administrator of Brown's Flexible Spending Accounts.
From: elizabeth doyle <elizabethdoyle33 @aol.com>
Date: Tue, Feb 28, 2017 at 2:31 PM
Subject: Elizabeth Doyle Sent you Important Document!
To:
Please find secure PDF uploaded below.
From: eFax <noreply.DHtiB @efax-reports.com>
Date: Mon, Feb 20, 2017 at 11:15 AM
Subject: eFax Report
To: [ Brown address ]
From: "Chougule, Geeta" <geeta_chougule @brown.edu>
Date: February 16, 2017 at 1:41:26 PM EST
To: "Chougule, Geeta Jain" <geeta_chougule @brown.edu>
From: "Brady, Daniela" <dm2069 @cumc.columbia.edu>
Subject: IT Notification
Date: February 16, 2017 at 11:54:26 AM EST
To: "Brady, Daniela" <dm2069 @cumc.columbia.edu>
This is legitimate email from Captain Bishop, Brown's contact with the Marine Corps PLC.
Under the category, "too good to be true", the Information Security Group and Federal Trade Commission warn you to look out for "Mystery Shopper Scams": opportunities to evaluate the quality of service in stores, such
From: Robert Wolford <robert561828 @outlook.com>
Date: Wed, Feb 8, 2017 at 8:15 AM
Subject: IMMEDIATE ACTION REQUIRED
To: < Brown address >
Hi <first name>,
From: Tim Cindric <tcindric @acosta.com>
Date: Mon, Feb 6, 2017 at 9:41 AM
Subject: IT Security-Change your password.
To: "help @websecurity.edu" help @websecurity.edu
From: USAA USAA.Web.Services @customermail.usaa.com <guestservices @xtremeactionpark.com>
Sent: Thursday, February 2, 2017 2:49 PM
Subject: USAA Detected Suspicious Activity
The following spoofed email -- targeting some at Brown with a request "to complete a task for me urgently" -- tries to trick the receiver into thinking it is from President Paxson.
The FBI has issued the following alert about college students being targeted in an employment scam that includes advertising phony job opportunities on college employment websites or sending emails to school accounts
We've received several reports of a suspicious email sent from ClaimSupport@benstrat.lh1od.com (an example follows below) that Benefit Strategies told us is legitim
From: "IRS.gov <taxassistance @info.gov>" <aboler20 @cornellcollege.edu>
Date: January 7, 2017 at 5:22:29 AM EST
To: undisclosed-recipients:;
From: Message from IRS.gov <do_no_reply @revnue.gov> <xhesika_begaj @brown.edu>
Date: Fri, Jan 6, 2017 at 6:00 AM
Subject: 2017 Tax Filing Season
To:
From: Diana Richardson <diana_richardson@brown.edu> <hobrien6@student.fitchburgstate.edu>
From: Brown Servicedesk <leah_olson @brown.edu>
Date: Mon, Dec 19, 2016 at 11:44 AM
Subject: Important Notice
To:
From: University Health Plans <sgrabowski @univhealthplans.com>
Date: Fri, Dec 16, 2016 at 1:23 PM
Subject: Brown University Insurance Waiver Audit
To: [ Brown address ]
Beware this classic scam (and example of "social engineering"): a sender contacts you with a request for assistance, usually money, when stranded in a foreign country due to a robbery.
Pages
If you received one and do not see it here, please forward it to PhishBowl@brown.edu (after stripping off any attachments) so that the phishing email can be added to the page.