Phishing and U of T Email Security

Where to receive alerts on computer virus/phishing concerns:

The following recommendations can assist members of our community to prevent ongoing concerns.

Anyone who has interacted with a phishing email should follow the following steps to ensure the security of their account:

  1. Perform an antivirus scan on your computer(s) and email IT at a picture of the results, showing the date taken and the number of files scanned (if possible). There are many reputable antivirus scanning softwares available on the market.
    • For Apple devices, IT recommends using Avira free.
    • For Android phones, they recommend using Malwarebytes free as Windows 10 and Windows 8 already have a built-in antivirus program by default.
  2. Reset your password.
  3. After creating a new password, you will need to log out of all instances of your account:
    • A. 
    • B. “Go to the portal” (logging in to the log-in prompts when needed)
    • C. Click on your UofT email address at the top right corner.
    • D. Click on “View Account”
    • E. Click on “Sign out everywhere”
  4. Check your signature, rules, and connected accounts in UTmail+ ( for changes that may have been made without your knowledge. Check your Deleted Items folder for any legitimate messages which may have been deleted. Missing messages cannot be recovered. For rules, please see:
  5. If you were sharing your UTORid, please note that your UTORid is for your use only and you should not be sharing it.
  6. If you replied to a phishing message, please review this article on avoiding email fraud:

Also, you can report/mark suspicious emails as phishing in Outlook using these instructions:

If the device keeps opening up the same page, this is a good indication that something malicious has been installed. A ticket can be opened with The Information Commons Help Desk team who can assist with running a malware scan. Visit or by email at, or by phone at 416-978-4357.

Please make a report to Campus Safety if your identification has been compromised and/or losses incurred.