This was a controlled phishing exercise conducted by the IT Department of Lime Resort El Nido. The login page you just submitted your credentials to was not real — but in a real attack, your username and password would now be in the hands of an attacker.
Verify the URL. Always check the address bar before entering credentials. The real E-Portal URL should match your company's official domain exactly.
Think before you click. Phishing links often come through email, SMS, or chat. If you didn't expect the message, be suspicious — even if it looks legitimate.
Never reuse passwords. Use a unique, strong password for each system. If one account is compromised, others won't be.
Report suspicious messages. If something feels off, report it to the IT Department immediately — don't click, don't submit.
No actual credentials were stored. This simulation was conducted solely to improve security awareness across the property. Your participation — even unintentional — helps make Lime Resort El Nido more secure.