What makes this a Phishing Message?
The cyber criminal responsible for this phishing scam put some effort into making this email message appear to be legitimate. The sender email address has been faked to appear to come from the campus HR department and the document link led to a fake Calnet login page. There is one clue that the message is a forgery:
- If you hold your mouse cursor over the "Click here" link, you can see that the destination is not the real Calnet login page (https://auth.berkeley.edu).
Two things to remember in this situation:
- If you receive a message containing a link or attachment that you did not expect, do not click on the link or download the file - especially when received from an anonymous source.
- Check for the legitimate web address for the Calnet login page before entering your credentials.
Original Message:
From: "HR@berkeley.edu" <HR@berkeley.edu> Dear XXXXX@berkeley.edu An information document has been sent to you by the Human Resources Department. Click here to Login to view the document. Thank you! Berkeley University Of California HR Department |