Phish Bowl
A collection of scam emails and other suspicious communications.
Don't get spooked by the three exclamation points in the subject line, but do get wise to the phishiness of bad grammar and suspicious URL provided (directing you to http://tags.my/upda
Another phish spotted on campus. What gives this one away?
From: Michael Cloy <michaelcloy01@gmail.com>
Date: Sat, Sep 28, 2019 at 13:41
Subject: JOB FOR STUDENT
From: brown.edu <shnogh.lori@mta.gov.am>
Date: Thu, 26th Sep 2019
Subject: help@brown.edu : Password Reset.
From: david magret <davidmagret2020@gmail.com>
Date: Tue, Sep 24, 2019 at 8:06 PM
Subject: Payroll Clerk.....
To:
Multiple sightings of the "Hello. Are you available?" phishing email have been reported, usually bearing a professor's name but with a bogus @gmail.com address.
Can you spot the signs of this recently reported email being a phish (even though you can't see from this example that none of the links has a brown.edu address)?
At least 2 users have received a large number of emails with subjects that begin "confirm nnnnn...", which appear to be confirmation messages for joining lists.
If you received a suspicious email from NavyFederal that looks like its coming from a Brown address, DON'T panic, but DO mark it as spam.
This supposed job offer bears a striking resemblance to a phishing email reported early last year. Don't be fooled!
From: '21 RISING <21rising@brown.edu>
From: Carberry Josiah <josiahcarberry.brown@gmail.com>
Date: Fri, Aug 30, 2019 at 10:10 AM
Subject: Re: Quick request
The Internal Revenue Service (IRS) has issued a warning about a new email scam in which malicious cyber actors send unsolicited emails to taxpayers from fake IRS email addresses.
How many red flags can you find in the following email? Which emotional buttons did the sender try to push? What did the sender include in the message to try and convince you it's real?
From: Khelsea Singh <ksinghcarranza1@babson.edu>
Date: July 31, 2019 at 1:30:24 PM EDT
From: Juliane Blyth <juliane.blyth@my.com>
Date: Mon, Jul 29, 2019 at 8:34 AM
Subject: Urgently
From: Carly Kite Lapinski <executiviedirector9012@gmail.com>
Date: Wed, Jul 24, 2019 at 9:27 AM
Subject: Request
A classic phish was reported -- both helpful and threatening at the same time -- which alerts the recipient to "Automatically switch to the new mail settings to avoid account closure in 48hours".
BWell Health Promotion released the following notification today of an online health promotion course for all incoming undergraduate students, provided through a partnership with EverFi.
From: Meisel, Joseph <davidaustellcolumbiaedum@gmail.com>
Date: Sun, Jul 14, 2019 at 7:59 PM
Subject: quick task
From: Diane Lipscombe <diane.lipscombe32@gmail.com>
[ one of several addresses reported * ]
Subject: Re: URGENT REQUEST
Sometimes the bogus job offers arrive by email, other times they're sought out, but both promise opportunities that may only lead to frustration, loss of personal information and money (such as
Beware bogus calendar invites, targeting victims with malicious and unsolicited Google Calendar notifications.
Beware this attempt by Interactive Research Communications to collect information about your copiers or printers, which will become "leads" to sell to
No need for concern if you received an email announcing your access to LinkedIn Learning, which is part of the switch from Lynda.
Beware of an email supposedly from the "Office 365 Team", trying to capture your Microsoft credentials, which warns that due to an "unusual volume of file deletion" a "medium-severity alert has been triggered."
We have received a growing number of reports of the "Go through this papers" scam, which at first glance may appear to be from someone you know, but upon closer examination, is from an @gmail.com account rather than a
From: Brown University(Tech Support) <itechcenter@brown.edu>
Date: Tue, May 14, 2019 at 11:47 AM
A legitimate email sent to some members of the Brown community on Thursday was inadvertently tagged with a Google banner warning to "Be careful with this message", the result of an anti-phishing mechanism that was put
From: Orange Technology <orangecountytechnology@gmail.com>
Date: April 2, 2019 at 3:52:40 AM EDT
To: undisclosed-recipients:;
Pages
If you received one and do not see it here, please forward it to PhishBowl@brown.edu (after stripping off any attachments) so that the phishing email can be added to the page.