Any @murraystate.edu email account holder that has been, or is unsure if they have been, compromised due to an email phishing scam can take steps to regain access to their accounts and further protect themselves.
Article Outline
Report the Email Phishing Scam
- Forward the email to abuse@murraystate.edu to let MSU’s Information Systems Security team know about the email.
- You can Report a Phishing Email through the Service Catalog.
- Use Gmail's “Report Spam” button at the top of the screen to help Google’s email screening process. (circle with an exclamation mark in the middle)
- You can also use the "Report Phishing" option in Gmail.
Regain Access to your RacerMail Account
If you cannot access your RacerMail account and see either message below:
- Contact the MSU Service Desk at 270-809-2346 or request your Account to be Restored through our Service Catalog.
- After a Service Desk staff member confirms that your account has been restored, immediately log into the login portal (https://login.murraystate.edu) to reset your password using the temporary password given to you by the Service Desk (or use the "Forgot Password? feature).
- Use a new password that you haven’t used before for Murray State or any other personal account. Make sure your new password meets the password criteria and is very different from previous passwords. Never use the old password again.
Even if you haven’t been truly compromised, we always recommend changing your passwords after receiving an email phishing scam: Once a hacker knows your username/email address and a valid password, those are stored and used to try to regain access to an account, or gain access to other accounts.
2-Factor Authentication
For added security, all Murray State email accounts are protected by DUO 2-Factor Authentication. This is an added level of security that will protect your account in the event your password is compromised. If you ever receive a fraudulent authentication request, please report it to the Service Desk immediately.
Check Your Email Settings
After you have successfully set a brand new password for your RacerMail account, check your settings to verify nothing has been changed. In RacerMail, click on the gear/cog icon in the upper right area of your screen, then click “Settings”
The most common settings to check are:
- Signature - From Settings, go to General, and scroll down to "Signature" to verify all settings are correct.
- Auto-reply/Vacation Responder - From Settings, go to General, and scroll down to "Vacation Responder" to verify all settings are correct.
- Display Name - From Settings, go to Accounts, then click "edit info" next to the "Send mail as" option if your display name isn't correct.
- Filters/Blocked Addresses - From Settings, go to Filters and Blocked Addresses to verify all settings are correct.
- Forwarding email address - From Settings, go to Forwarding and POP/IMAP to verify all settings are correct.
- Scheduled emails - In the left-side menu, (below Inbox, Sent, Drafts, etc) look for the Scheduled option. If there are emails scheduled to send, delete any that are not from you.
Stay Alert
Please remember that Murray State University employees will NEVER ask you for your password or personal information via email. If an email asks you for this, or if you question the validity of an email you have received, please contact the MSU Service Desk at 270-809-2346.
Helpful Articles
Identity Protection Resources
The resources below may be helpful for those individuals who believe their personal information may have been compromised as a result of phishing or other means of identity theft. These sources can provide information about steps which may be taken to avoid identity theft.
Equifax
www.equifax.com
P.O. Box 105069
Atlanta, GA 30348
1-800-525-6285
Experian
www.experian.com
P.O. Box 9532
Allen, TX 75013
1-888-EXPERIAN (397-3742)
TransUnion
www.transunion.com
P.O. Box 1000
Chester, PA 19016-1000
1-800-680-7289
Federal Trade Commission
https://www.ftc.gov
https://www.identitytheft.gov
600 Pennsylvania Avenue, NW
Washington, DC 20580
Telephone: (202) 326-2222
1-877-438-4338
Office of the Kentucky Attorney General
http://ag.ky.gov
Office of Consumer Protection
1024 Capitol Center Drive, Suite 200
Frankfort, KY 40601
Telephone: (502) 696-5389
Identity Theft Hotline: 1-800-804-7556