|
|
Pop away |
---|
Warning | ||
---|---|---|
| ||
The current Simulated Phishing campaign has ended, and signups are no longer being accepted. Examples of past Simulated Phishing campaigns are still provided below for reference. |
...
In order to raise awareness of current phishing attack tactics, the Berkeley Lab Cyber Security team sends emails to Berkeley Lab employees that simulate real phishing attacks. If you would like to help improve Berkeley Lab's phishing awareness please sign up below.
The goal of this simulated phishing campaign is to help you to learn how to spot a phish and report it to the Cyber Security team. Accurately reporting phishing allows the Cyber Security team to alert other employees and block future phishes.
Sign up
Simulated phishing emails will be sent only to users that have filled out this Link in New Window
What is Phishing?
An important part of this campaign is distinguishing between what is a phishing email, a targeted phishing email, and spam.
Attack | Description | Action you should take | ||||||||
Targeted Phishing | A phishing attack that targets your affiliation with Berkeley Lab, UCB, or DOE to steal | Report immediately to [email protected] | ||||||||
Phishing | Attacks that are carried out in order to steal passwords, SSNs, and other sensitive data. These messages often ask you to click on a link, send information, or enter credentials by pretending to be a credible website (such as a bank). | Report to [email protected] | ||||||||
Spam | These are unwanted messages but are not asking for sensitive information. | Good to update spam filters by using our
|
...
How do I report a phishing email?
...
Information about individual responses will NOT be shared with anyone outside the security team. Passwords will NOT be stored. This information will never be used or released in any identifiable manner outside the security group, including in any manner which would be used to evaluate your job performance. Simulated phishing is designed as a training exercise and to help the Laboratory understand our overall exposure to phishing as well as to target our protections and training. It is in no way designed and will not be used to judge the performance of individuals.
Feedback
In order to improve this program please fill out this form after receiving a simulated phishing email: Link in New Window
Past Simulated Phishing Campaigns
...