Protect Your Email Account after an Email Scam/Attack

Any MSU email account holder that has been, or is unsure if they have been, compromised due to an email phishing scam can take steps to regain access to their accounts and further protect themselves. 

Report the Email Phishing Scam

Regain Access to your RacerMail Account

If you cannot access your RacerMail account and see either message below: 

  • Contact the MSU Service Desk at 270-809-2346 or request your Account to be Restored through our Service Catalog. 
  • After a Service Desk staff member confirms that your account has been restored, immediately log into myGate to reset all your passwords. 
  • Use a new password that you haven’t used before.  If you used the old password for other accounts, such as your personal email, online banking, online shopping, social media sites, etc, change those passwords as well.
  • Never use the old password again. 

Even if you haven’t been truly compromised, we always recommend changing your passwords after receiving an email phishing scam: Once a hacker knows your username/email address and a valid password, those are stored and used to try to regain access to an account, or gain access to other accounts.

2-Factor Authentication

For added security, all Murray State email accounts are protected by DUO 2-Factor Authentication. This is an added level of security that will protect your account in the event your password is compromised. If you ever receive a fraudulent authentication request, please report it to the Service Desk immediately. 

Check Your Email Settings

After you have successfully set a brand new password for your RacerMail account, check your settings to verify nothing has been changed. In RacerMail, click on the gear/cog icon in the upper right area of your screen, then click “Settings

The most common settings to check are:

  • Signature - From Settings, go to General, and scroll down to "Signature" to verify all settings are correct.
  • Auto-reply/Vacation Responder - From Settings, go to General, and scroll down to "Vacation Responder" to verify all settings are correct.
  • Display Name - From Settings, go to Accounts, then click "edit info" next to the "Send mail as" option if your display name isn't correct.
  • Filters/Blocked Addresses - From Settings, go to Filters and Blocked Addresses to verify all settings are correct. 
  • Forwarding email address - From Settings, go to Forwarding and POP/IMAP to verify all settings are correct.

Stay Alert

Please remember that Murray State University employees will NEVER ask you for your password or personal information via email. If an email asks you for this, or if you question the validity of an email you have received, please contact the MSU Service Desk at 270-809-2346.

Helpful Articles

Identity Protection Resources

The resources below may be helpful for those individuals who believe their personal information may have been compromised as a result of phishing or other means of identity theft. These sources can provide information about steps which may be taken to avoid identity theft.

P.O. Box 105069
Atlanta, GA 30348

P.O. Box 9532
Allen, TX 75013
1-888-EXPERIAN (397-3742)

P.O. Box 1000
Chester, PA 19016-1000

Federal Trade Commission
600 Pennsylvania Avenue, NW
Washington, DC 20580
Telephone: (202) 326-2222

Office of the Kentucky Attorney General
Office of Consumer Protection
1024 Capitol Center Drive, Suite 200
Frankfort, KY 40601
Telephone: (502) 696-5389
Identity Theft Hotline: 1-800-804-7556


Article ID: 48960
Thu 2/22/18 11:24 AM
Wed 9/8/21 2:39 PM

Related Articles (3)

Learn more about Google's security feature for logging in: 2-Step Verification (sometimes called 2-Factor Authentication)
This article provides information related to one of the more frequent email scams our users have been receiving in early 2020.