Skip to main content


Be cautious of links in emails requesting you to enter your credentials on a separate website. eight-bit sparty


A phishing scam involves email messages designed to appear from a trusted source to persuade you to provide sensitive information.

MSU and other reputable organizations will NEVER send emails requesting a username and password combination.

Phishing Cues

Be wary of messages demanding immediate response and requesting passwords, bank accounts, or threatening to suspend or terminate your account.

What does MSU do to prevent phishing?

MSU Mail Protection service is active on all MSU email accounts, learn how this service impacts links within emails, suspected spam messages, and more.

How do I avoid phishing attempts?

  1. Look at the sender’s email address. If it doesn’t make sense and isn’t from a person or account you’re familiar with, do not engage with that sender.
  2. Be wary of links within emails. If you do not trust the sender do not click on any links. Check to see if the links begin with https://. Generally, a secure site will use https:// for added protections when dealing with personal information.  
  3. Learn how MSU Mail Protection service works. By learning about the features protecting your MSU inbox, you will be better able to differentiate between a legitimate email and a suspicious email.
  4. Reach out for help. If you’re unsure about whether an email message is legitimate, do not click on any of the links in the message.
    • Contact the institution the message is from if you are unsure it can be trusted.
    • If the message appears to be from MSU, contact the MSU IT Service Desk at (517) 432-6200 or email

What happens if I fall for a phishing attack?

Phishers could take stolen account credentials and sell them to criminals who could use your email or account to send huge volumes of spam. They could also gain access to your personal and financial information.

If you've responded to a phishing message, it's important to act quickly to minimize possible damage.

If you think you’ve compromised your MSU NetID

  1. Immediately change your password at
  2. If you need further assistance, call the MSU IT Service Desk at (517) 432-6200

If you think you’ve compromised other personal information

Visit and follow the outlined steps to ensure your identity and accounts are not further compromised.