This phony Staff Assessment notification was received by many bMail users. It is part of a credential stealing attempt.
What makes this a phishing message?
The senders email is not a @berkeley.edu email, likely a compromised account from the Austin, TX school district @austinisd.org
This targeted phishing scam uses urgency indicating a task to complete.
The target page below is a free Jot webform. campus users will never be asked to enter their CalNet credentials in any site that is not a UCB CAS authentication page.
The most recent Frauds have had subject lines like:
- 2025 Employee Assessment Report
- BERKELEY STAFF ASSESSMENT REPORTS 2025
- Review of Assessment Reports For All Employee
Tips if Something Seems Off:
- The link leads to a non CalNet CAS page and asked for campus credentials.
- The email was unexpected and from an unknown sender.
- It tries to create an emergency situation to make the recipient act quickly without examining the message.
Follow up with the sender separately
If you didn’t expect it, reject it. Or follow up with the individual directly in a separate email or call/text to confirm.
Report and/or flag it
Open the message
To the right of the 'Reply' arrow select 'More' (typically denoted with three vertical dots)
Then 'Report phishing'
For suspicious messages received by text, please take a screen shot and forward the message to phishing@berkeley.eduFor more information visit https://security.berkeley.edu/resources/phishing
Original Message:
