In order to raise awareness of current phishing scam tactics the Berkeley Lab Cyber Security team will begin sending emails to the Berkeley Lab employees that simulate real phishing attacks. During the initial phases of this project, simulated phishing emails will only be sent to the list of users who opt-in to receive them. Information about individual responses will NOT be shared with supervisors or HR.
The goal of this simulated phishing campaign is to help you to learn how to spot a phish and report them to the Cyber Security team. Accurately reporting phishing scams can allow the Cyber Security team to alert other employees and block future phishes.
What is phishing?
It is important to distinguish between what is a targeted phishing email, a generic phishing email, and spam.
Targetted phishing: These are attacks that
Spam, Phishing, Targetted Phishing
Opting in
Simulated phishing emails will be sent only to members of the [email protected] mailing list. Here
Click here to subscribe: https://lists.lbl.gov/sympa/subscribe/simulated-phishing
What to do when I see a phishing email?
Report the email to [email protected] and save the source code of the message as an attachment.
Click here to learn how to forward an email as an attachment: Forward Email As Attachment
Why is this necessary?
How will it be implemented?
How can you avoid phishing scams?
Training and Resources
Examples:
Opt-in
