Skip to end of metadata
Go to start of metadata

Targeted Phishing March 23

On the morning of Monday March 23, 2015, about 2000 people (800 inside the Lab and 1200 outside the Lab) received a targeted phishing message with the subject "Important Document"  The message contained a link to a fake Google login page that captures usernames and passwords.

Phishing Message

Here is what the phishing message looks like:

Phishing Page

Here is a screenshot of the phony login page that the phishing message links to:

FAQs

Why am I being notified?

You are being notified because according to our logs, you received a copy of the message.  We want to make sure that everyone who received the message understands it is not legitimate.

What if I clicked on the link?

Please contact security@lbl.gov if you believe you entered your username and password on the phishing page, or if you aren't sure.

What have you done to prevent phishing messages?

The Cyber Security Team is constantly watching for these types of phishing messages.  As soon as we were alerted to this message (by a vigilant user) we immediately took steps to block the emails and the web pages included in the message.  We are reaching out to anyone suspected of entering information on the page and we continue to monitor for any additional messages which target Berkeley Lab, UC, DOE or our affiliates.

Questions

If you have any further questions, please write us at security@lbl.gov