Phishing

Anti-Phish Tip #3

Hover to Discover

Hover to Discover

Look out for deceptive links

THE TRAP: You receive an email telling you to "click here" to verify your account.

Anti-Phish Tip #5

Not Sure if it's a Phish? Drop us a line

Not Sure if it's a Phish? 

Drop us a line

THE TRAP: You receive an email that looks like it's an official UC Berkeley email. You are not sure if this is a phishing attempt.

Anti-Phish Tip #2

If you didn't expect it, reject it!

If you didn't expect it, reject it!

Don't click unexpected links

THE TRAP: You receive an unexpected email that claims to be from the "Help Desk" or someone you know. It says it's urgent. You must click a link to prevent problems with your account.

Anti-Phish Tip #1

Passwords in Email = Epic Fail

Passwords in Email = Epic Fail

Never send your password in an email

What is Phishing?

Phishing is a type of attack carried out in order to steal usernames, passwords, credit card information, Social Security Numbers, and other sensitive data by masquerading as a trustworthy entity. Phishing is most often seen on campus in the form of malicious emails pretending to be from credible sources such as UC Berkeley technology departments or financial organizations related to the university.

By tricking campus users into giving away their information, attackers can:

How can I identify a Phishing scam?

The first rule to remember is to never give out any personal information in an email.  No institution, bank or otherwise, will ever ask for this information via email.  It may not always be easy to tell whether an email or website is legitimate and phishing emails are using social engineering tactics to make create sophisticated scams.

How do I report a Phishing or suspicious email?

If you receive an email you are not sure about, forward the suspicious email -- don't reply -- to consult@berkeley.edu or call the ITCS Service Desk at 510-664-9000. The email can be blocked from the campus system to prevent others from falling victim to the Phishing attack.

Do I only need to worry about Phishing attacks via email?

No.  Phishing attacks can also occur through phone calls, texts, instant messaging, or malware on your computer which can track how you use your computer and send valuable information to identity thieves. It is important to be vigilant at all times and remain suspicious of sources that ask for your credentials and other personal information.