Phish Bowl Alerts
This supposed email from Wells Fargo, might use the name as the sender, but the email address domain is the non-existent "...@rocheplate.com." The scammer begins with the reassuring statements "This sender is trusted" and "New Zix secure email message from Wells Fargo", then provides a registration link that will redirect the recipient to an untrusted site.
Example of "Deceptive site ahead" warning at end of this post.
===================================================================================
From: Wellsfargo Paymentremittance <paymentremittance-wellsfargorem@rocheplate.com>
Date: Fri, Jun 16, 2023 at 8:37 AM
Subject: Separate Remittance Advice
To: <josiah_carberry@brown.edu>
[ This sender is trusted ]
New Zix secure email message from Wells Fargo
Do not reply to this notification message; this message was auto-generated by the sender's security system.
[ Open Message ]
From the Register Account Page:
a) Enter your email address if not already shown,
b) Create a password for the secure email site and click Register.
To view the secure message or reply to the sender, click Open Message.
The secure message expires on Jun 25, 2023 @ 04:41 PM (GMT).
If clicking Open Message does not work, copy and paste the link below into your Internet browser address bar.
For assistance, review the
This message may contain confidential and/or privileged information. If you are not the addressee or authorized to receive this for the addressee, you must not use, copy, disclose, or take any action based on this message or any information herein. If you have received this message in error, please advise the sender immediately by reply e-mail and delete this message. Do not include confidential or sensitive information in your reply to this notification as it will not be encrypted. Thank you for your cooperation.
