Knowledge Base
DepEd Gmail Phishing – "Migration and Upgrade" Scam Alert
Account
DepEd Gmail Phishing – "Migration and Upgrade" Scam Alert
Prepared by
Last Revised Mar 6, 2026
DepEd CERT has flagged recurring phishing campaigns (2025–2026) impersonating official notices. Emails claim "Effective [date e.g. Feb 28 2026] your account migrates to Google Workspace Plus – click to upgrade immediately" with links to fake portals (e.g., portal.gmail.com variants).
Red flags:
- Urgent language ("immediate action required" / "access lost")
- Suspicious sender (not @deped.gov.ph or official Google no-reply)
- Links to non-Google domains (hover to check)
- Requests password / MFA code / personal info
What to do:
1. Do NOT click links or reply
2. Forward suspicious email to DepEd CERT (cert@deped.gov.ph) or your division ITO
3. Report in Gmail: Open message → More (three dots) → Report phishing
4. If you clicked: Immediately change password at myaccount.google.com → Security → Password
- Enable/check 2-Step Verification
- Review recent activity & connected devices
- Run antivirus scan
Prevention:
- Bookmark official login: mail.google.com (always type manually)
- Enable Advanced Protection if high-risk role
- Train on phishing: DepEd memos emphasize never sharing credentials
Real DepEd changes (e.g., storage policies) come via official channels only – no urgent clicks required.
Report all incidents to helpdesk for tracking.
Red flags:
- Urgent language ("immediate action required" / "access lost")
- Suspicious sender (not @deped.gov.ph or official Google no-reply)
- Links to non-Google domains (hover to check)
- Requests password / MFA code / personal info
What to do:
1. Do NOT click links or reply
2. Forward suspicious email to DepEd CERT (cert@deped.gov.ph) or your division ITO
3. Report in Gmail: Open message → More (three dots) → Report phishing
4. If you clicked: Immediately change password at myaccount.google.com → Security → Password
- Enable/check 2-Step Verification
- Review recent activity & connected devices
- Run antivirus scan
Prevention:
- Bookmark official login: mail.google.com (always type manually)
- Enable Advanced Protection if high-risk role
- Train on phishing: DepEd memos emphasize never sharing credentials
Real DepEd changes (e.g., storage policies) come via official channels only – no urgent clicks required.
Report all incidents to helpdesk for tracking.
Related Articles
No related articles found in this category.
Ticket Usage
This article has been linked to 0 support tickets.