Simulated Phishing Email Campaign

July 06, 2018

Sometime during July, faculty and staff will receive two simulated (fake) phishing emails as part of a UC systemwide cyber security phishing campaign. This campaign is designed to educate the UCSC community about phishing and to increase awareness of the ways in which phishing has evolved and become more sophisticated.

As a premier research university, UCSC is a high-value target for phishing attacks. By becoming aware of possible threats and vulnerabilities, you help to protect yourself and sensitive UCSC information.

What is phishing?

Phishing is a scam designed to steal information or passwords, compromise computers or trick you out of money - typically via deceptive emails, texts, posts on social networking sites, pop-ups or phone calls. Phishing is a national issue that continues to increase and evolve.

What will happen?

During the month of July, you will receive two fake phishing emails. Think of these fake phishing emails as an exercise - we want you to react as you normally would if you received a real phish. If you click on a link in our fake phishing email, you won’t experience any negative consequences. You will be directed to an educational web page designed to help you recognize and respond appropriately to email phishing. Individuals who click on the link will not be identified.

What should I do if I identify a phishing email?

If you receive a phish do not respond to it; instead, report it to ITS! All individuals who report the phish to ITS will receive our sincere thanks and be entered into a drawing with prizes awarded in early September.

Report to ITS

Forward the phish email to help@ucsc.edu. This action will open a support ticket. For more details on reacting and reporting a real phish, see: https://its.ucsc.edu/news/report-phishing.html.

The sophisticated nature of next generation phishing can trick almost anyone. Fortunately, you can learn to recognize phishing and understand what to do when you encounter it.

If you would like to opt out of this simulated phishing campaign, send an email to: sec-donotphish-group@ucsc.edu

If you have questions, please submit an IT Request ticket at https://itrequest.ucsc.edu or contact the ITS Support Center by email help@ucsc.edu, telephone 459-HELP (4357), or in-person at Kerr Hall Room 54.