Phishing Scams

How you can protect yourself

Never send your SFU Computing ID and password to anyone. If you receive an email message asking for your SFU Computing ID and password:

  • DO NOT RESPOND no matter how official the request seems.
  • Delete the message or select 'Junk' located under the Junk button in the ribbon in the Outlook Web App (OWA). Even responding to the message with content such as "please don't send me spam" simply confirms to the sender that they have contacted a live address and increases your odds of receiving more spam in the future. 
    • If you mark a message as Junk, that sender will then be added to your Blocked Senders list and the message will be put into your Junk folder. This will sync with the Outlook desktop applications.

Reporting Phishing

You may also forward any phishing attempt you receive to If the phishing attempt is from or targets SFU, please forward the headers from that message to following the instructions below:

1. Right-click on the e-mail in the message list and select View message details 

2. A window will open with all the message details. Copy the message details and then close the window.

3. Forward the e-mail to with the message details included. To do so, click Forward in the ribbon.

4. In the To field, enter Paste the message details into the body of your forwarded message, and then click Send.