Anti-Phish Tip #1

Passwords in Email = Epic Fail

Passwords in Email = Epic Fail

Never send your password in an email

THE TRAP: You receive an urgent email that appears to be from ITCS asking you to reply with your password because your account is "compromised" or "over quota" or "suspended due to inactivity".

YOUR DEFENSE: UC Berkeley and organizations that care about the protection of your information should never ask you to send bank account numbers, Social Security numbers, driver's license numbers, health information, or health insurance information via email. Decline requests to send this information in an email.

Remember: Only You can Protect your CalNet Passphrase!

Not sure if it's a phish? Report it.

Using the bMail web interface:

  1. Open the message
  2. To the right of 'Reply' arrow, select 'More' (typically denoted with three vertical dots)
  3. Then 'Report phishing'

If you are unable to log into bMail, forward the message to