Phishing

Phishing Example: Robocalls

July 21, 2019
Robocalls are on the rise. Be wary of any pre-recorded messages you might receive.

Phishing Example: Business Email Compromise

December 27, 2018
These are targeted and simple forms of phishing emails designed to get victims to purchase gift cards, the "email compromise" gets its name because the attacker mimics the email of a known sender. However, these can also be sent through a legitimate, albeit hacked account. The messages start out as basic greetings then progress into requests for money or data. Since the content is highly personalized it’s often easy to get hooked.

Phishing for Gift Cards

July 17, 2019

"Hey, are you available?"

Anti-Phish Tip #4

Check for Trash Before the Slash

Check for Trash Before the Slash

Verify "https://auth.berkeley.edu/" Before Entering CalNet Credentials

The Phish Tank

Welcome to the "Phish Tank".  This page highlights examples of phishing emails received on campus.  There are many variations of the types of scams listed here, this is only a small sampling of ones we've received. 

This list is intended for the purpose of educating students and staff to spot a phish, do not assume an email is safe because it is not listed here.

Simulated Phishing Campaign

Bears Eat Phish!

This phishing awareness program is part of Berkeley's ongoing commitment to educate and protect the Campus community. Our intention is to provide a safe environment for users to identify phishing emails - with no harm to them - and with the knowledge that we will not collect credentials nor will individual results be reported.

We use the program in conjunction with cybersecurity awareness and technological solutions that detect and block phishing activity.

Why is understanding the risk of Phishing important?

Phishing attacks are an ongoing threat to campus and are becoming increasingly sophisticated. Successful Phishing attacks can cause financial loss for victims and put their personal information at risk. 

Anti-Phish Tip #5

Not Sure if it's a Phish? Drop us a line

Not Sure if it's a Phish? 

Drop us a line

THE TRAP: You receive an email that looks like it's an official UC Berkeley email. You are not sure if this is a phishing attempt.

Anti-Phish Tip #3

Hover to Discover

Hover to Discover

Look out for deceptive links

THE TRAP: You receive an email telling you to "click here" to verify your account.

Anti-Phish Tip #2

If you didn't expect it, reject it!

If you didn't expect it, reject it!

Don't click unexpected links

THE TRAP: You receive an unexpected email that claims to be from the "Help Desk" or someone you know. It says it's urgent. You must click a link to prevent problems with your account.