What makes this a Phishing message?
This was the first tax season related phishing message reported on campus this year. The message contains a common ploy to trick the recipient into clicking on a link to download their W2 Form. In this case, the link went to a forged site for "MyADP" with account login fields. CalNet credentials entered into this page would be intercepted by the scammers and compromised.
The formatting in this message is very poor, and both the sender address and download URL link are highly suspicious, so this phish should be pretty easy to spot. UC Berkeley does not utilize ADP for payroll services, another hint that this is a phishing message.
The Human Resources/Payroll Department has completed the final paystub