Phishing

Phishing Example: Your Dropbox File

January 30, 2017
Hello, You just received a file through Dropbox Share Application. Please click below and log in to view file. View file Every time a friend installs Dropbox, we'll give both of you 1 GB of space for free! Need even more space? Upgrade your Dropbox and get 1 TB (1,000 GB) of space. Happy Dropboxing. - The Dropbox Team

Phishing Example: Business Email Compromise

December 27, 2018
Are you around? I need to pay a vendor with the blucard. University of California, Berkeley

Phishing Example: Library Account

April 1, 2017
Dear Student, Your access to your library account is expiring soon due to inactivity. To continue to have access to the library services, you must reactivate your account. For this purpose, click the web address below or copy and paste it into your web browser. A successful login will activate your account and you will be redirected to your library profile. https://auth.berkeley.edu/cas/login?service=https%3a%2f% If you are not able to login, please contact at xxxxx@berkeley.edu for immediate assistance.

Phishing Example: Google Doc Phishing Message

May 3, 2017
XXX has invited you to view the following document: Open in Docs

Phishing Example: Robocalls

July 21, 2019
This call is from the Department of Social Security Administration. The reason you have received this phone call from our department is to inform you that we just suspend your Social Security number because we found some suspicious activity, so if you want to know more about it just press 1, thank you.

Phishing for Gift Cards

July 17, 2019
In the past few months, the campus has seen an increase in these types of phishing attacks. The most common form is a short message that starts with something like, "quick help needed," "are you in the office?", or "available?" from a person of authority. Often the messages appear to come from vice chancellors, deans, and department chairs.

Phone Phishing and Telephone Spoofing Scam

January 27, 2020

We have become aware that identity thieves are calling individuals on campus via landline or cellular devices asking for personal information. Remember to be vigilant and careful about protecting your personal information.

We work very hard to protect our voice network; however, attackers may try to use a technology called spoofing to trick you into giving up information. Spoofing is the practice of deliberately falsifying the information transmitted to your caller ID to pretend to be someone else.

If you have a phone with caller ID be aware that the number may be spoofed to...

Phishing Example: Part time work assistant needed

October 30, 2019
Hello RECIPIENT I am urgently seeking for a Clerical/Administrative Assistant to work for me on campus at their own free time while I am away on my work and earn basic wage $250 weekly.This is a flexible job that requires little to no prior experience .Let me know you are interested and I will fill you in. Sincerely *Professor David Card* *Department of Economics* *530 Evans Hall #3880* *University of California Berkeley* *Berkeley, CA*

Phishing Example: Urgent Request

January 9, 2020
Casey Hennig
Are you available ? No calls text only 9513072XXX BEST REGARDS Carol T Christ Chancellor Berkeley University of California

Support Ending for TLS 1.0 and 1.1 Protocols

January 28, 2020
On Mar. 23 CalNet fully depreciated TLS 1.0/1.1.

On Mar. 23, CalNet disabled TLS 1.0 and 1.1 protocols from being used to access CAS, Shibboleth, CalGroups, CalNet Account Manager, and LDAP.

TLS 1.0 and 1.1 are insecure and vulnerable to attacks which risk the integrity and authentication of data sent between client and destination. Disabling these protocols will mitigate these issues, adhere to campus policy, and to protect institutional data and IT resources.

All major browser-makers - Firefox...