I want to report a phishing email

If you receive a phishing email, then it is very important that you report it to the University as soon as possible.

What is a phishing email?

Phishing emails are scams that are used to obtain data/information (usernames, passwords etc) from you, that can then be used for malicious reasons (i.e. changing the bank account to which your salary is paid into). Often, phishing emails will target a whole organisation.

How to report that you have received a phishing email

Please forward the phishing email, as an attachment, to phishing@lboro.ac.uk as soon as you are aware of it.

If you are unsure how to send emails as attachments, please contact IT Service Desk, on Tel: 01509 222333 for further advice.

If you are aware that you have entered your University log-in details onto a web page because of the phishing email, then it is very important that you change your password immediately. You can do this at the link below. Likewise, if you use the same password for other accounts/sites, you will need to change it for these as well.

What happens after the phishing attack has been reported?

The Information Security Team will investigate the attack to establish the further detail of what happened and when.

If the University is concerned that data/information containing the personal information of other individuals has been compromised, then it MUST notify the Information Commissioner’s Office of the breach within 72 hours of becoming aware of the incident.

The University may also want to notify other staff of the phishing email and minimise the likelihood of it causing any harm to individuals.