Welcome to the Phish Bowl

How do I spot a phishing email?

3 signs you are possibly being scammed:

These are the latest campaigns seen by the Information Security Office. If you receive any other kinds of scamming or phishing messages, please forward the message to phishing@rice.edu.

45959

EXECUTIVE REMOTE PERSONAL ASSISTANT NEEDED

Phishing email (job scam) with a malicious Google form sent from a compromised account.

45958

ACT NOW ANNOUNCEMENT

Phishing email with a malicious Google from sent from a compromised account.

2025/10/20 - 14:17:20 (UTC -05:00)

Payroll Schedule Changes

The phishing email directs recipients to a spoofed Rice identity page created to harvest credentials.

2025/10/20 - 13:22:48 (UTC -05:00)

Piano Gift Needed Suitable Home Yamaha Free Piano For Rice University Yamaha Free Piano Piano Gift For : - Rice University Offer Free Piano Gift Piano seeking a new home Quick Note About a Grand Piano Beloved piano needs a new home Quick Piano Question for You Grand Piano – Can You Help? Yamaha Grand Piano – Just Checking In Looking for a Baby Grand Piano? Baby Grand Piano

The attacker impersonates a Rice community member and attempts to establish contact by claiming to offer a free piano.

2025/10/14 - 19:34:24

Submission Posted

Attacker sent fake job opportunities to harvest personal data.

Tue, 14 Oct 2025 15:01:20 PM (CDT)

Administrative assistant needed

Phishing email with a malicious Google from sent from a compromised account.

Thu Oct 16 2025 22:50:32 GMT-0500 (Central Daylight Time)

RICE ALERT-IMPORTANT NOTICE

States recipients account is flagged for deactivation and that they must verify their status by following the embedded link.

Thu, 16 Oct 2025 15:33:43 PM (CDT)

URGENT NOTICE

This phishing email, sent from a compromised Rice account, impersonates Microsoft to trick users into entering their passwords on a fake Google Form under the false claim of Office 365 account deactivation.

2025/10/16 - 10:26:19 (UTC -05:00)

VERIFY YOUR ACCOUNT

This phishing email, sent from a compromised Rice account, impersonates Microsoft to trick users into entering their passwords on a fake Google Form under the false claim of Office 365 account deactivation.

Tue Oct 14 2025 15:51:06 GMT-0500 (Central Daylight Time)

EMAIL VERIFICATION UPDATED PROPOSAL URGENT NOTICE

This phishing email, sent from a compromised Rice account, impersonates Microsoft to trick users into entering their passwords on a fake Google Form under the false claim of Office 365 account deactivation.

Tue, 14 Oct 2025 08:45:46 AM (CDT)

TERMINATE OFFICE 365 ACCOUNT

This phishing email, sent from a compromised Rice account, impersonates Microsoft to trick users into entering their passwords on a fake Google Form under the false claim of Office 365 account deactivation.

Fri, 19 Sep 2025 12:29:46 PM (CDT) Thu, 09 Oct 2025 10:08:54 AM (CDT)

TRS-Pension Review

Claims to be Ryan Janz from appreciation financial, but the real Ryan Janz works for a different company. Attempts to get users to click on malicious scheduling link.

Sun, 28 Sep 2025 20:30:13 PM (CDT).

Verify Now 09/28/2025.

Impersonating university IT, this phish threatens Microsoft 365 deactivation and urges you to “verify” via a link that asks for your password, leading to credential theft.

2025/09/24 - 14:27:00 (UTC -05:00)

Subject: [All Staff] Staff Assessment Reports – Sept 24–25

Impersonating HR, this phishing email uses a generic “Dear Team” greeting and a tempting “View Your Assessment Report” link to send you to a fake login page and steal your credentials.

Tue, 23 Sep 2025 15:38:01 PM (CDT)

Subject: [All Staff] 2025 Individual Assessment Reports

Posing as HR, this phishing email dangles a “performance review report” and a View Your Assessment Report link to trick you into clicking through to a credential-harvesting login page.

45923

Exclusive MacBook Pro Offer for Rice Students (+1 205 897 9426) Exclusive MacBook Pro Offer for Rice Students (+1 231 434 2196)

This is a phishing scam posing as Rice/Apple, using urgency, an off-channel “text this number” instruction,.

09/23/2025 ~15:00

Exclusive Donation Opportunity for Selected Students – (+1 1 231 434 2196)

Financial scam using an emotional appeal, fake details of donating musical instruments, and asking for a shipping fee to trick students into sending money.

45923

Exclusive Donation Opportunity for Selected Students – (+1 1 231 434 2196)

Financial scam using an emotional appeal, fake details of donating musical instruments, and asking for a shipping fee to trick students into sending money.

Tue, 23 Sep 2025 12:56:59 PM (CDT).

Subject: [All Staff] 2025 Individual Assessment Reports – Now Available (Sep 23 to Sept 25)

Posing as HR, this phishing email dangles a “performance review report” and a View Your Assessment Report link to trick you into clicking through to a credential-harvesting login page.

Mon, 22 Sep 2025 14:09:26 PM (CDT).

Mon, 22 Sep 2025 14:09:26 PM (CDT).

Posing as HR, this phishing email dangles a “performance review report” and a View Your Assessment Report link to trick you into clicking through to a credential-harvesting login page.

Mon, 22 Sep 2025 16:11:55 PM (CDT).

Exclusive MacBook Pro Offer To Rice Student +1 205 897-9426.

This is a phishing scam posing as Rice/Apple, using urgency, an off-channel “text this number” instruction, and a $185 “shipping” fee to steal money and personal info—legitimate programs use official channels and don’t charge fees.

Mon, 22 Sep 2025 16:32:35 PM (CDT)

MacBook Pro (M3) Distribution – Limited Access for Eligible Students Contact : +1 231 434 2196

This is a phishing scam posing as Rice/Apple, using urgency, an off-channel “text this number” instruction, and a $185 “shipping” fee to steal money and personal info—legitimate programs use official channels and don’t charge fees.

Mon, 22 Sep 2025 16:06:42 PM (CDT)

Exclusive MacBook Pro Offer To Rice Student +1 231 434 2196

This is a phishing scam posing as Rice/Apple, using urgency, an off-channel “text this number” instruction, and a $185 “shipping” fee to steal money and personal info—legitimate programs use official channels and don’t charge fees.

2025/09/17 - 17:43:15 (UTC -05:00)

2025 Performance Evaluation Report – Action Required

Phishing message posing as HR about a performance review that urges clicking an external form link to harvest credentials.

2025-09-05T09:26:44-06:00

Student Emergency Fund - Outcome

This phishing email falsely claims the recipient has won money to trick them into entering their password on a fraudulent link.

01 Sep 2025 11:27:41 AM (CDT)

Rice University,Act Email Verification Rice University Update!!! Earn $650 Weekly – Flexible Work Opportunity

This phishing email tries to scare the recipient into clicking a fake Google Form link and entering their password by threatening to delete their school account if they don’t ‘verify’ it.

2025/08/27 - 01:51:47 (UTC -05:00)

RICE to Name and Last Name RICE Private Letter to Name and Last Name RICE - Name and Last Name RICE Mail to Name and Last Name

The email contained an attachment about a fake income update, with the sender impersonating HR.

2025/08/26 - 13:40:14 (UTC -05:00)

Earn $650 Weekly – Flexible Work Opportunity

Scammer send fake job opportunities to ask recipients to fill in personal information.

2025-08-25 at 15:00:30

Rice University Update!!!

This phishing email attempts to trick the recipient into providing their password through a fake verification link by threatening that their school email account will be permanently deleted.

2025/08/25 - 13:30:40 (UTC -05:00)

Rice University Update!!!

This phishing email attempts to trick the recipient into providing their password through a fake verification link by threatening that their school email account will be permanently deleted.

2025/08/22 - 13:29:54 (UTC -05:00)

Musical Instruments & More – Complimentary Items During Downsizing | +1 (231) 434-2196 Musical Instruments & More – Complimentary Items During Downsizing | +1 205 897 9426

The attacker claimed to send free musical instruments and asked recipients to contact a phone number provided in the subject line.

2025/08/21 - 15:07:00 (UTC -05:00)

Downsizing Giveaway - Musical lnstruments and Other vaIuable ltems Contact +1 231 434 2196

The attacker claimed to send free musical instruments and asked recipients to contact a phone number provided in the subject line.

2025/08/18 - 10:23:15 (UTC -05:00)

TRS Pension Review

Impersonating retirement financial experts to trick users into making appointments and chatting with them, which may lead to potential losses

2025/08/17 - 16:41:24 (UTC -05:00)

[ USAA REQ5851884 ] Account Re-enabled with Notification (Email verification) USAA Detected Suspicious Activity Inbox Account Denied: Reactivate Your USAA Login Access

This phishing email impersonates USAA Bank, using a fake request reference number and urging the recipient to "reactivate access" in order to steal login credentials.

2025/08/12 - 18:29:10 (UTC -05:00)

Re: Your library balance transfer notice Your library balance transfer notice

This phishing email impersonates a Rice University library notice to trick recipients into clicking a malicious link under the guise of checking or paying a fake $500 balance.

2025/07/29 - 16:47:41 (UTC -05:00)

Reminder of upcoming scheduled payment

Attacker created an malicious URL pretends to be an official Rice site to ask users to put in their credentials for a fake payment.

2025/07/28 - 18:31:55 (UTC -05:00)

Administrator

The attacker pretended to be a Rice administrator and sent an online form to harvest personal data.

2025/07/09 - 08:14:09 (UTC -05:00)

Black Satin Finish Yamaha Grand Piano For Adoption

"Free piano" scam. Scammer is impersonating Sameera Rizvi and claims to be offering a Yamaha C7 (7'2") Concert Grand Piano from a Mr. Bernard Camasi. They are attempting to lure recipients into contacting an external address for potential scams.

Other Scams

If you receive any other kind of scamming or phishing message, please report it to phishing@rice.edu.