What makes this a phishing message?
This targeted phishing scam impersonates the Information Security Office to create fear to cause the recipients to act, clicking on the mailicious link.
Tips if Something Seems Off:
Double-check the email address before responding
Look to make sure the email address is correct. In Gmail hover your mouse over the sender name for the email to display. On a mobile phone or a touchscreen, press and hold the link (don't tap!) to reveal the actual URL. (Look in the bottom left corner of the browser window.) Don't click on a link unless it goes to a URL you trust.
Follow up with the sender separately
If you didn’t expect it, reject it. Or follow-up with the individual directly in a separate email or call/text to confirm.
Report and/or flag it
Subject: Email removal request
Date: 28 Apr 2022 04:02:08 +0200
From: "Admin" <firstname.lastname@example.org>
We have received your cancellation request and you are no longer
subscribed to security.berkeley.edu
If you did not request cancellation, kindly click below to reactivate
RE-ACTIVATE ACCOUNT email@example.com
Thank you for being a customer.
security.berkeley.edu Admin Services
- end -