PHISHING EXAMPLE: UPDATE EMAIL: Don't lose access to your account!!

February 19, 2021

These are targeted and simple forms of phishing emails designed to get victims to click on a link that contains malicious content or steals your credentials.

Tips if Something Seems Off:

Double-check the email address before responding

Look to make sure the email address is correct. In Gmail hover your mouse over the sender name for the email to display. On a mobile phone or a touchscreen, press and hold the link (don't tap!) to reveal the actual URL. (Look in the bottom left corner of the browser window.) Don't click on a link unless it goes to a URL you trust.

Follow up with the sender separately

If you didn’t expect it, reject it. Or follow-up with the individual directly in a separate email or call/text to confirm.

Report and/or flag it

Open the message
To the right of 'Reply' arrow
Select 'More' (typically denoted with three vertical dots)
Then 'Report phishing'

If you are unable to log into bMail, forward the message to phishing@berkeley.edu For more information visit https://security.berkeley.edu/resources/phishing

Examples of these types of attacks include:

Original Message:

-------- Forwarded Message --------

> Subject: UPDATE EMAIL: Don't lose access to your account!!

> Date: 19 Feb 2021 05:37:51 -0800

> From: berkeley.edu Support

> Security Notice!

> Dear XXXX,

> Our security system has detected some irregular activity connected to your

> account. you will be unable to send and recieve emails until this issue has

> been resolved

> CLICK HERE TO VALIDATE NOW

> To prevent further irregular activity we will restrict access to your

> account within 72 hours if you did not validate your account.

> *Note:* Mail Administrator will always keep you posted of security

> updates. Mail Admin