These are targeted and simple forms of phishing emails designed to get victims to click on a link that contains malicious content or steals your credentials.
Tips if Something Seems Off:
Double-check the email address before responding
Look to make sure the email address is correct. In Gmail hover your mouse over the sender name for the email to display. On a mobile phone or a touchscreen, press and hold the link (don't tap!) to reveal the actual URL. (Look in the bottom left corner of the browser window.) Don't click on a link unless it goes to a URL you trust.
Follow up with the sender separately
If you didn’t expect it, reject it. Or follow-up with the individual directly in a separate email or call/text to confirm.
Report and/or flag it
-
Open the message
-
To the right of 'Reply' arrow
-
Select 'More' (typically denoted with three vertical dots)
-
Then 'Report phishing'
If you are unable to log into bMail, forward the message to phishing@berkeley.edu For more information visit https://security.berkeley.edu/resources/phishing
Examples of these types of attacks include:
Original Message:
From: "Help Desk" <no-reply@berkeley.edu>Subject: You recently made a request to deactivate email.Date: May 17, 2021 at 10:27:19 AM PDTTo: xxx@berkeley.edu
Dear Customer,
You recently made a request to deactivate email. This request will be processed shortly.
If you did not make this request, cancel the request now.
Cancel Deactivation
If you do not cancel this request, your account will be deactivated and all your email data will be lost.
Sincerely,
Your berkeley.edu Internet Team