Don’t take the bait: How you can spot a phish

September 6, 2019

“Phishing” unfortunately, it's still all the rage. Attackers try to fool you into sending them money (or buying gift cards) or revealing your personal information online. The name comes from the idea of fishing: scammers send a message that acts as bait, hoping to “hook” someone.

The good news is that you have the power to throw these phish back! Let’s take a minute to talk about what you can do to avoid phishing:

  1. Be cautious. Especially at the beginning of the semester, during tax season, and holiday shopping season. Remember the old warning about not talking to strangers? It goes double on the internet. Anyone can pretend to be someone else and a message from an exciting new friend, or even one that appears to come from a friend, could actually be a trick. Just like with the person in the van "giving out candy" - walk away, don't engage, and report it to consult@berkeley.edu.
  2. Remember not to share sensitive information through emails, online, over the phone, text messages, etc. Details like your passwords, credit card numbers, and Social Security Number are things that no legitimate company would be asking you for through these channels. 
  3. Get familiar with the Phish Tank. Our office posts examples of known phish attempts against campus and has a lot of great tips on how to phish.
NCSAM Champion Logo