Email security

The University receives a huge number of emails every day. Unfortunately, some of these emails are malicious and can cause harm to you and the University.

What is a phishing scam? 

A “phishing” scam is a fraudulent email used by scammers to solicit personal information such as your password or banking details.  

Phishing scams will masquerade as a legitimate business (such as the University) so they appear more convincing. Scammers also regularly seek to capitalise on topical issues to trap people into responding.  

Here are some tips to help you recognise a phishing scam:  

  • Does the sender address look suspicious?

    • All emails from University staff or students end in 

    • Consider whether there is an external email warning.  

    Scammers sometimes use hacked University email addresses to send phishing or spam emails. Avoid clicking on suspicious links in email, even from people you know. 

  • Does the email address you personally?

    • Scammers often distribute spam and phishing emails to a large number of recipients for maximum effect. 

    • Emails sent from legitimate businesses such as the University or your bank will be addressed to you individually. 

  • Are you being asked to send personal information?

    Legitimate businesses, such as the University or your bank, will never request personal information such as your password or credit card number in an email message. 

  • Does the email provide contact details?

    • Scammers often don’t provide contact details for fear of reprisal.  

    • It never hurts to make sure a suspect email is authentic by telephoning the sender before replying or opening any attachments or links. 

How can I thwart email scams? 

Scammers rely on people replying to their scam attempts - it keeps them in business! If no one ever responded, scammers would cease to send out scams. 

Here are some tips to help you thwart email scams:  

  • Stop and think before you click

    Avoid clicking on suspicious links in emails. Scammers often add links to phishing and scam emails in an attempt to trick you into visiting a malicious webpage. Once there, you may be asked to enter your password, or a virus may be (surreptitiously) downloaded onto your computer. 

    Scammers can also attach infected files to their emails in an attempt to infect your machine. 

    Here are some basic tips to help you avoid visiting a malicious website: 

    • Hover your mouse over the link and check the "target" address 

    • Avoid clicking on email links - copy and paste the link into your web browser 

    • Never open a file you are not expecting. If in doubt, call the sender to make sure it was intended. 

    • Check to make sure links and attachments are clean by submitting them to VirusTotal 

    • If you have clicked on a link within an email purporting to be from the University, make sure the website's domain name  ends in 

  • Never share private information such as your password

    Your university password is your online key into the university. Just like your house key it should be carefully guarded. The University of Adelaide will never ask you for your password – even over the telephone. 

  • Never respond to phishing or spam emails

    • By responding to phishing or spam emails you let scammers know that their scam was delivered successfully. Scammers now know your email address is valid and exploit this by sending you more scams. 
    • Never respond to phishing or spam emails. Report any suspicious emails using the reporting suspicious emails advice

How do I report suspicious emails? 

Around 95% of phishing and spam emails are blocked before they get a chance to enter our network. 

  • use the PhishAlarm reporting button on your University Windows computer, or 

To add an email as an attachment, please see the appropriate guide below:

  • Office 365

    • Select the email message you wish to submit by clicking on it 

    • With the chosen email selected in the left column, select 'New' in the top left to compose a new email on the right 

    • When the 'new' email box appears, drag and drop the scam email from the left column into the new email on the right 

  • Microsoft Outlook 2016

    Select the email message you wish to submit 

    From the Home tab select the More button 

    Select Forward as Attachment 

    Address the e-mail to and click ‘Send’ 

  • Apple Mail

    Select the e-mail message that you wish to submit. 

    Using your mouse, right click (or Control + left click) on the e-mail message and select ‘Forward as Attachment’. 

    Address the e-mail to and click ‘Send’ 

  • Mozilla Thunderbird

    Select the e-mail message you wish to submit. 

    From the ‘Message’ menu, select ‘Forward As’ and then ‘Attachment’. 

    Address the e-mail to and click ‘Send’ 

  • Google Gmail

    Open the e-mail message you wish to submit. 

    From the ‘Reply’ drop down menu, select ‘Show original’. 

    You should see your e-mail message appear in plain-text format. 

    From the ‘File’ menu in your web browser, select ‘Save As...’. 

    In the ‘Save Webpage’ dialog, provide a file name for the e-mail message and Save as type ‘Text File (*.txt)’. 

    Navigate to where you would like to store the e-mail message and then click the ‘Save’ button. 

    From your inbox, select ‘Compose Mail’ and then ‘Attach a file’. 

    Navigate to where you saved your e-mail message and click ‘Open’. 

    Address the e-mail to and click ‘Send’