Phishing

Phishing Example: Part time work assistant needed

October 30, 2019
This message, appearing to come from a professor, was successful at convincing several students to engage in back and forth emails ending in money changing hands. If you have received this message and shared correspondence with the scammer, we recommend that you cease correspondence immediately and contact UCPD if there has been any financial transactions.

Phishing for Gift Cards

July 17, 2019

"Hey, are you available?"

Phishing Example: Robocalls

July 21, 2019
Robocalls are on the rise. Be wary of any pre-recorded messages you might receive.

Phishing Example: Business Email Compromise

December 27, 2018
These are targeted and simple forms of phishing emails designed to get victims to purchase gift cards, the "email compromise" gets its name because the attacker mimics the email of a known sender. However, these can also be sent through a legitimate, albeit hacked account. The messages start out as basic greetings then progress into requests for money or data. Since the content is highly personalized it’s often easy to get hooked.

Anti-Phish Tip #4

Check for Trash Before the Slash

Check for Trash Before the Slash

Verify "https://auth.berkeley.edu/" Before Entering CalNet Credentials

The Phish Tank

Welcome to the "Phish Tank".  This page highlights examples of phishing emails received on campus.  There are many variations of the types of scams listed here, this is only a small sampling of ones we've received. 

This list is intended for the purpose of educating students and staff to spot a phish, do not assume an email is safe because it is not listed here.

Simulated Phishing Campaign

Bears Eat Phish!

This phishing awareness program is part of Berkeley's ongoing commitment to educate and protect the Campus community. Our intention is to provide a safe environment for users to identify phishing emails - with no harm to them - and with the knowledge that we will not collect credentials nor will individual results be reported.

We use the program in conjunction with cybersecurity awareness and technological solutions that detect and block phishing activity.

Why is understanding the risk of Phishing important?

Phishing attacks are an ongoing threat to campus and are becoming increasingly sophisticated. Successful Phishing attacks can cause financial loss for victims and put their personal information at risk. 

Anti-Phish Tip #5

Not Sure if it's a Phish? Drop us a line

Not Sure if it's a Phish? 

Drop us a line

THE TRAP: You receive an email that looks like it's an official UC Berkeley email. You are not sure if this is a phishing attempt.

Anti-Phish Tip #3

Hover to Discover

Hover to Discover

Look out for deceptive links

THE TRAP: You receive an email telling you to "click here" to verify your account.