Search Results for "phish bowl"

Phish Bowl Blog

Published On: October 11, 2018
Shared by Jared
The Phish Bowl is a list of recent email messages that have been confirmed as malicious or fraudulent by the Information Security department. If you have received any of the messages listed below as a confirmed phishing email, do not follow the link(s) in the message; simply delete it. Do NOT assume a suspicious email [...] Read more

COVID-19 Phishing Sample #5: Dirty little secret

Published On: March 24, 2020
Shared by Angelife

In scams like these, the crooks don’t have any data on you, let alone details about all your family members and where they live. The “proof or secret” they may have is a password you used to have that was extracted from publicly available data leaked in an old data breach. Don’t be scared, send […]

COVID-19 Phishing Sample #4: Coronavirus disease (COVID-19) outbreak prevention and cure update

Published On: March 24, 2020
Shared by Angelife

This email instructs recipients to open an attachment for the purpose of receiving updated instructions on how to fight the coronavirus. This attachment was an archive that, when opened, revealed “Coronavirus Disease (Covid-19) CURE.exe.” When run, this executable loaded HawkEye, a keylogger which is capable of intercepting keystrokes, stealing credentials, taking screenshots, and exfiltrating its […]

COVID-19 Phishing Sample #3

Published On: March 23, 2020
Shared by Mike

1 – From address is inconsistent with name 2 – Lure intended to entice user to click suspicious links; verify something like this with a reputable news source

COVID-19 Phishing Sample #2

Published On: March 23, 2020
Shared by Mike

1 – From address is inconsistent with name 2 – Generic greeting 3 – 700,000 euros == if it looks too good to be true, it probably is 4 – Bank secretary with a Gmail.account + many, many punctuation and spelling errors

COVID-19 Phishing Sample #1

Published On: March 23, 2020
Shared by Mike

From address claims Federal agency (CDC), but displays incorrect address. The attachment contains malicious code to infect the user’s computer.

Quick Request

Published On: April 3, 2023
Shared by gerwitz

This is similar to a previous Phish listed on the Phish Bowl, “Kindly provide your available cell number”. This time the scammer went a step further and set up a free Outlook email account with the name of the Chair they are impersonating. The name of the Chair is changed to a fake name in […]

Invoices, Subscriptions, or Renewals

Published On: September 9, 2022
Shared by gerwitz

The graphics below are examples of malicious emails reported to the Phish Bowl. Review the red flags to see why these emails should be deleted.

Reaching Out

Published On: July 26, 2022
Shared by gerwitz

A number of people reported this email to the Phish Bowl. If someone replies to this email, they will be asked to either give personal information about themselves or buy virtual gift cards. Thanks to all who flagged it. The email from Kathy’s Stamps n Signs explained they were hacked and their email account was […]

Available

Published On: March 28, 2024
Shared by soukupg

This email attempts to impersonate a legitimate employee by using a real employee name, but originates from a suspicious external domain. There are many variation of this email utilizing different employee names. It is likely that the attacker is using publicly available directory information to target employees within a department by using a familiar name. […]