Skip to end of metadata
Go to start of metadata

Targeted Phishing Jan 15

On the afternoon of Wednesday January 15th, 2014, about 60 people received a targeted phishing message with the subject "Message From University of California HR"  The message contained a link to a phony "At Your Service" web page which captures usernames, passwords and date of birth when entered and then redirects you to the "At Your Service" home page.

Phishing Message

Here is what the phishing message looks like:

Phishing Page

Here is a screenshot of the phony login page that the phishing message linked to:



Why am I being notified?

You are being notified because according to our logs, you received a copy of the message.  We want to make sure that everyone who received the message understands it is not legitimate.

What if I clicked on the link?

Please contact if you believe you entered your username and password on the phishing page, or if you aren't sure.

What have you done to prevent phishing messages?

The Cyber Security Team is constantly watching for these types of phishing messages.  As soon as we were alerted to this message (by a vigilant user) we immediately took steps to block the emails and the web pages included in the message.  We are reaching out to anyone suspected of entering information on the page and we continue to monitor for any additional messages which target Berkeley Lab, UC, DOE or our affiliates.


If you have any further questions, please write us at