糖心原创

News

Hands on a laptop with an illustration of a red fishing hook superimposed over the top

Keeping your university email account secure: phishing awareness

Friday, 27 March 2026
Phishing is a type of online scam where emails or fake websites try to trick you into sharing personal information, such as your password, bank details or account information.

Following a recent increase in phishing activity, there have been a number of staff account compromises. In some cases, these accounts have been used to send emails to large groups of students. These messages have now been identified and removed. 

In response to this, external emails containing SharePoint links will now include a warning message prompting you to stop and assess the email before taking any action. This message will appear as follows: 

How to protect yourself

  • Never share your password or personal information via email
  • Do not click on suspicious links or open unexpected attachments
  • If you are taken to a login page, do not enter your details unless you are sure it is genuine
  • If an email appears to be from someone you know but seems unusual, check with them directly
  • Before entering your details, check the website address (URL) carefully, phishing sites often look very similar to real ones

If you have already clicked a link, entered information or opened an attachment, please contact the IT Service Desk as soon as possible.

How to spot a phishing email

Phishing emails can take many forms, including those which appear to come from the University. Be cautious if you notice:

  • Unsolicited emails asking you to click a link and log in
  • Messages that seem too good to be true
  • Email addresses that don’t match the organisation they claim to be from
  • Generic greetings such as 'First_Name Last_Name has share a file with you'
  • Unexpected attachments
  • A sense of urgency (e.g. threats your account may be closed)
  • Links that look similar to genuine websites but contain small differences
  • Requests for personal information (e.g. username, password or student loan details)
  • Emails where the content appears as an image rather than normal text

Reporting phishing emails

If you receive a suspicious email, please report it using the Report Phishing button in Outlook and do not click on any links it contains.

  • Outlook desktop app: Click Report MessagePhishing
  • Outlook mobile app: Tap the three dots (…) → Report MessagePhishing
  • Outlook web version: Click Report Report phishing

Once reported, the email will be moved to your Deleted Items folder.

By staying alert and taking a moment to check emails carefully, you can help protect both your account and the wider university community.

Current students

糖心原创
University Park Campus
Nottingham, NG7 2RD