Phish Bowl

The following emails are phishing attempts that have been reported by the Brown community. We advise that you do the following:

  • If you received one and do not see it here, please forward it to PhishBowl@brown.edu (after stripping off any attachments) so that the phishing email can be added to the page.
  • If you received the same email but from a different Brown address than shown, please forward it to us so that we can attend to the new compromise.
  • If you received one already posted here, please report it as phishing to the Gmail team (from within the message, click on the down arrow to the right of the REPLY button and select "Report phishing") or simply delete it.
  • More about phishing at brown.edu/go/phishing and What to do When You Spot a Phish.
  • Please note that the Phish Bowl account is actively monitored during regular business hours and periodically at other times.
Phishing Alert
Mar 3, 2015 - 1:06 pm

From: noreply@account < ebony_mccaskill @brown.edu >
Date: Tue, Mar 3, 2015 at 12:38 PM
Subject: Update your account now
To:

[ Google logo ]
Dear valued customer,

This is to notify you that your account is been access from different location.
Use the link below to secure your account now or Lose it to fraudsters.

https:// mail . google  .com/

NOTE: Once your account is full, We will deactivate your account if you do not upgrade now

* Please Kindly ignore this message if you've already Upgraded.

Gmail Copyright © 2014 Gmail Inc. All rights reserved. 

Phishing Alert
Mar 3, 2015 - 1:02 pm

From: noreply@gmail.com < norah_cicione @brown.edu >
Date: Tue, Mar 3, 2015 at 12:53 PM
Subject: Secure your account
To:

google
Dear valued customer,

This is to notify you that your account is been access from different location.
Use the link below to secure your account now or Lose it to fraudsters.

https:// mail . google . com/

NOTE: Once your account is full, We will deactivate your account if you do not upgrade now

* Please Kindly ignore this message if you've already Upgraded.

Gmail Copyright © 2015 Gmail Inc. All rights reserved. 

Phishing Alert
Mar 3, 2015 - 12:33 pm

We have received a few reports of pop-up surveys, like the example below, which appear after visiting the Providence Journal (projo.com). While this can be disconcerting to suddenly see a pop-up that knows something about you, that is the nature of browsers. A web site is designed to capture basic information about the browser being used to view it. This allows it to provide the optimal display and response.  In addition, content providers track the activities of visitors to their websites for a variety of reasons, some identified in the ProJo's FAQ Technical Support section.

Whenever you connect to sites on the Internet, information about the connection and the underlying system are available to the site automatically, which can include your IP address. From there it's simple to translate that address into the name of the domain holder.

Those wishing to have a more private browsing experience should read the IT Knowledgebase article on "incognito browsing" to learn how to keep others from tracking your online browsing activities.

Phishing Alert
Mar 3, 2015 - 11:42 am

Note: Sender's address may vary slightly. Also reported sent from Help@custom.

Phishing Alert
Mar 2, 2015 - 11:32 am

From: Flanagan, Kathleen < kathleen_flanagan @brown.edu >
Date: Mon, Mar 2, 2015 at 11:15 AM
Subject: Important Document (Top Urgent)
To:

Hello

I am sending you this document through Drop Box.

This is a confidential Message.

View Document

Regards. 

Phishing Alert
Mar 2, 2015 - 8:22 am

Phishing Alert
Feb 28, 2015 - 10:45 am

From: Brown University < dana_wilson @brown.edu >
Date: Sat, Feb 28, 2015 at 9:44 AM
Subject: Important Notification : Credit Card Alert..Required
To:
Reply-To: browncreditinformation @brown.edu

Dear Individuals

Help us keep your account secure, Our records indicate that you need to update and register your Credit Card details With the school < Click Here >

Maintained by the Brown University
-Copyright 2015- 

Phishing Alert
Feb 26, 2015 - 10:44 am

A variation on one spotted earlier this week.


Subject: Problems with item delivery, n.000831629
From: "FedEx SmartPost" < leo.pitts @vm5178.vps.agava.net >
Date: Tue, February 24, 2015 6:08 pm
To: gc@westcoastflags.com

Dear Customer,

We could not deliver your parcel.
Please, open email attachment to print shipment label.

Yours trully,
Leo Pitts,
Sr. Operation Manager.

Copyright 2014 (C) FedEx. All rights reserved. 

Phishing Alert
Feb 26, 2015 - 9:36 am

Phishing Alert
Feb 26, 2015 - 8:23 am