Retrieve your IT credentials

Protect your personal information by creating strong passwords for your University and personal accounts to keep them secure. For security reasons, we do not recommend writing your password down.

Never reuse your Loughborough email address and password to register for other online services – if any of those other sites are compromised, criminals may then have access to your University IT account.

Remember to ensure the password you choose is complex, difficult to guess, and follows the following rules:

• 12 or more characters in length
• MUST contain at least three out of the following four:
  • Uppercase letters
  • Lowercase letters
  • Numbers
  • Non-Alphanumeric characters (!"£$%^&*)
• NOT contain any personal details - this includes your name or IT username in any format e.g., @Jonathan123 or @ITStudent123

Passwords can be changed by logging on to a University Computer and then pressing CTRL+ALT+DEL and clicking on Change Password.

We strongly recommend you enrol in the Password Reset System. This will make it easy for you to change your password, especially if you forget it.

Only open emails and attachments from known and trusted sources. Never give personal or sensitive details out online or over email.

Types of email scams that attempt to obtain sensitive information such as usernames, passwords, bank account details and credit card numbers, may present as:

• Imitating as official University emails, such as campus security, IT Helpdesk or HR/Payroll with a link requesting you to log in with your username and password
• Organisations requesting confirmation of bank details
• Claims that bank details have been compromised, or claim that you have been awarded a grant, entitled to a refund, rebate, reward, discount or donate
• Asking you to reset your social media account password and username

Several signs to spot if they are fake:

• Contain generic greetings such as 'Dear Bank Customer' or 'Dear Email User'
• Contains poor spelling and grammar
• Claim to offer something that is too good to be true, for example, “Congratulations You are a Winner…”
• Suspicious link embedded in the email

If you are unsure whether an email is genuine, do not click any links in it, open any attachments, or reply with any personal information. If you receive suspicious email, please forward the email to phishing@lboro.ac.uk.

Do not give your bank information to anyone or any website that you do not trust. Loughborough University will never ask you for your bank or sign in details via email.

1. Never disclose security details, such as your PIN or full password - it’s never okay to reveal these details.
2. Don’t assume an email request or caller is genuine - people aren’t always who they say they are.
3. Don’t be rushed – a genuine bank or organisation won’t mind waiting to give you time to stop and think.
4. Listen to your instincts – if something feels wrong then it is usually right to pause and question it.
5. Stay in control – have the confidence to refuse unusual requests for information

For more information, visit the Financial Fraud Action UK website.

Look for the padlock icon in the address bar when paying for goods or services online – it means the website is secure however check the URL for inconsistencies. If you cannot see a padlock icon in the window of a web login screen do not log in!

For a University online service, the web address will begin with the https - the s is very important: if it is absent do not log in!

Check the address starts with https:// whenever you’re asked to enter sensitive information online.

Please note: The latest version of Chrome does not show https or www for encrypted sites. It only shows the padlock. To see full URL, just click into the address bar to see full display of URL name.

Avoid using public Wi-Fi hotspots that are not secure or ask you for personal information to access it.