Follow these steps first

Step 1. Forward the suspicious email as an attachment to security@springfield.edu.

• On a computer (Gmail): Attach the suspicious message to a new email. (Instructions are linked here)
• On a phone or tablet: If you can’t attach it, simply forward the email as quickly as possible—speed matters more than the attachment.

Step 2. Remove the message from your inbox when you’re sure it’s phishing:

• Computer (Gmail): Click the three‑dot menu ⋮ and choose Report phishing. (Instructions are linked here.)
• Phone or tablet: If you don’t see that option, simply delete the email.

Step 3. If you clicked, replied, or opened something, say calm and act quickly. Mistakes happen.

• Did you enter/share your password (or think you did)?.

1. Change it right away at password.springfield.edu

• Did you opened or downloaded an attachment?

1. Disconnect the device from the internet (switch off Wi‑Fi or unplug the network cable).
2. Contact the Technology Support Center (TSC) immediately: tsc@springfield.edu or (413) 748-4872.
3. Tell the TSC exactly what occurred. They’ll secure your account, scan your device for malware, and guide any additional steps.

Prompt reporting and quick action protect both you and the campus network.

How to spot Phishing Emails

Attackers are always inventing new tricks to steal passwords and data, but most phishing emails still share a few warning signs. Look for these common red flags:

• Verify the Sender: Always check the sender's email address for authenticity.
• Ask: Should this sender be sending me this?
• Look for:

1. Urgent or threatening language (“act now”)
2. Grammatical errors or odd phrasing
3. Links go to an unexpected domain (hover to see)
4. Requests for passwords, gift cards, W‑2s, or wire transfers

If the email is sent by a college user, still verify emails that seem off (e.g., odd requests, typos) by contacting the sender via another method (e.g. phone).

Prevents common missteps

Data breaches and phishing attacks are significant threats that disrupt our community's everyday activities, waste valuable resources, compromise the privacy of students, faculty, and staff, and have legal and financial consequences. Sixty to eighty percent of all data breaches stem from non-malicious human errors—let's protect our campus by following these best practices:

• Be Cautious: Never share login information.
• Be Suspicious: If you're unsure about an email, especially one you're not expecting, forward it to IT for verification.
• Think Twice Before Clicking: Don’t click any links or reply to the any suspicious message.
• Don't provide your password to any one.
• Don’t forward it to classmates or colleagues “for a second opinion” (over the shoulder is fine).

Still have questions?

Need more help? Email tsc@springfield.edu to open a support ticket, or check the Tech Help homepage for walk‑in hours, phone numbers, and other contact options. The support team is always ready and willing to help.