OOPS! You Clicked on a Simulated Phishing Email!

Para ver la informacion de esta pagina en Español seleciona Español en el menú debajo.

What Is a Simulated Phishing Email? A simulated phishing email is a fake malicious email sent to you by the ITS department at UCSC to assess the response to a real-world phishing attack. If this had been an actual attack, clicking the link would have sent you to a dangerous site and exposed your system to ransomware, malware, or another cybersecurity threat.

When You Receive Future Unsolicited Emails

• Think before you click! Check each link by hovering over it to see its true source. If the URL is unfamiliar or differs from what you expected to see, don’t click.
• Be immediately suspicious if the message tries to pressure you to do something, offers an incredible deal, or prompts you to reset a password or update account information.
• Look for a small, yellow “External” tag near the header. It lets you quickly identify if the person contacting you is not associated with UCSC.
• Verify claims and offers via a trusted website or known phone number.
• Look out for spelling and grammar errors. Too many of these errors could indicate a fraudulent email.
• Contact the ITS Support Center for advice if you’re unsure whether an email is fraudulent.

If You Receive a Phishing Email

• Do not respond to it.
• Report it to Google.
  • Open the message in Gmail.
  • Next to Reply , click More .
  • Click Report phishing.
• Report it to the ITS Support Center only if you have responded directly to the phish. 

Watch the Video Below on How to Report a Phishing Email in Gmail

More Information on Fraudulent Emails

• Avoiding Phishing Emails
• Reporting Phishing in Gmail
• Student Job Offer Scams
• Google's Phishing Quiz.