What makes this a phishing message?
This targeted phishing scam impersonates the Information Security Office to create fear to cause the recipients to act, clicking on the mailicious link.
Tips if Something Seems Off:
Double-check the email address before responding
Look to make sure the email address is correct. In Gmail hover your mouse over the sender name for the email to display. On a mobile phone or a touchscreen, press and hold the link (don't tap!) to reveal the actual URL. (Look in the bottom left corner of the browser window.) Don't click on a link unless it goes to a URL you trust.
Follow up with the sender separately
If you didn’t expect it, reject it. Or follow-up with the individual directly in a separate email or call/text to confirm.
Report and/or flag it
Open the message
To the right of 'Reply' arrow
Select 'More' (typically denoted with three vertical dots)
Then 'Report phishing'
If you are unable to log into bMail, forward the message to firstname.lastname@example.org For more information visit https://security.berkeley.edu/resources/phishing
Subject: Email removal request
Date: 28 Apr 2022 04:02:08 +0200
From: "Admin" <email@example.com>
We have received your cancellation request and you are no longer
subscribed to security.berkeley.edu
If you did not request cancellation, kindly click below to reactivate
RE-ACTIVATE ACCOUNT firstname.lastname@example.org
Thank you for being a customer.
security.berkeley.edu Admin Services
- end -