Phish Bowl
A collection of scam emails and other suspicious communications.
Harrick Plasma is currently experiencing a massive influx of virus-carrying emails that may also extend to their contacts at Brown University.
From: Walker, Michelle <mwalker6@capital.edu>
Date: Thu, Aug 27, 2020 at 2:22 PM
From: Alecia Renn <info@rennalecia.com>
Date: Tue, Aug 25, 2020, 1:25 PM
Subject: RE: Bank of America ($1,000 credit)
From: brown.edu <noreply@brown.edu>
Date: Tue, Aug 25, 2020 at 7:39 AM
Subject: Notice : 8/25/2020 11:39:48 a.m.
From: Alexander Fleischmann <stevencharlespol@gmail.com>
Date: Sat, Aug 8, 2020 at 9:00 AM
Subject: Urgent,
From: UHR-Talent Development <talentdevelopment@brown.edu>
Date: Wed, Aug 19, 2020 at 8:44 AM
From: <no-reply@kotozte.com>
Date: Mon, Aug 17, 2020 at 12:51 PM
Subject: New statement 8/17/2020 17:51
From: Sheila Quigley <quigleysheila307@gmail.com>
Date: August 12, 2020 at 11:04:46 AM EDT
Beware of tutor and personal assistant requests like these, which can be the start of a social engineering scam leading to lost dollars rather than satisying employment.
Community members continue to receive "Brown Events" emails from the non-Brown address "associatedstudentsevents@gmail.com", directing recipients to an IRL.com s
From: "notifications@cs.brown.edu" <ikeno-a@ac.wakwak.com>
From: Peter Belenky <peterbelenky28@gmail.com>
Subject: URGENT REQUEST
Date: July 24, 2020 at 11:40:12 AM EDT
From: info@browm.edu via TransferXL <notifications@transferxl.com>
Date: Mon, Jul 20, 2020 at 11:38 AM
Do not respond to the following email from Jenzaa (or a similar one from NewQuotez), nor use the Unsubscribe links provided.
The sender "Brown Events" has nothing to do with Brown and is actually associatedstudentsevents@gmail.com, which has been known to masquerade as several other sc
This phishing example uses a look-alike email address (notice the stray punctuation mark before the @ ?) coupled with a reasonable and tempting job offer in its attempt to harvest victims.
From: Christina Hull Paxson <brown.president.edu@gmail.com>
Date: Sat, Jun 27, 2020, 11:58 a.m.
Subject: Quick response
From: <fedgrantagent010@gmail.com>
Date: Wed, Jun 24, 2020 at 11:13 AM
Subject: 2020/2021 Faculty Evaluation
An example of the new Gmail anti-spoofing warning message has been reported, providing an excellent opportunity to remind Phish Bowl readers of the service activated on Thursday, June 18th.
From: williams roland <wil.rol10@gmail.com>
Sent: Thursday, June 4, 2020 12:28 PM
From: Support on behalf of HR <op@cs.brown.edu>
Date: Mon, Jun 1, 2020 at 4:59 PM
Subject: payroll
This phishing email is similar to the post "How are you? ...
The following is a legitimate notification of a Zoom update scheduled for May 30th and announced in Today@brown on May 20th.
From: Gerik Grant <soulfullpromotions@gmail.com>
Date: Fri, May 29, 2020 at 12:46 PM
Subject: Job Notification.
From: Sara Walsh <text.voice.mobile@gmail.com>
Date: Tue, 26th May 2020
Subject: Quick one
From: <DoNotReply@loyaltygateway.com>
Date: Tue, May 26, 2020 at 1:02 AM
Subject: Your Order Confirmation
From: <brianthom2020@gmail.com> or <harrisbrian581@gmail.com>
Date: Mon, May 25, 2020 at 10:00 AM
The following is an example of a Critical Review survey, sent to Brown students for each course that was eligible for review, and is the first year this process went digital.
---
The following are a couple of examples of notifications sent through HireRight, who has partnered with Brown University to conduct background verifications.
From: Christina Hull Paxson <islandmuse@twc.com>
Date: Mon, May 18, 2020 at 12:02 PM
Subject: Urgent!
Pages
If you received one and do not see it here, please forward it to PhishBowl@brown.edu (after stripping off any attachments) so that the phishing email can be added to the page.