New anti-phishing tools to deploy this week

Dear campus community,

You likely have noticed the recent increase in malicious emails in your inbox. Universities around the globe are experiencing similar increases, and we’re working around the clock to mitigate the problem and prevent continued phishing attacks. Technology Services’ Privacy and Cybersecurity team is turning on the first of several planned solutions over the next few days.

Outlook report spam button enabled starting April 25

We will turn on a feature that allows you to report spam right from the toolbar. Faculty, staff, and students with an Outlook account should notice this option is available within the next few days.
Using the Report Spam Outlook Add-in ( – (requires login)

Adding email address limits (rate limiting) starting May 2

We are establishing new set limits on the number of email addresses that someone can send to in a 24-hour period via a Microsoft O365 mailbox. We have selected an allowable number that far exceeds usual daily email activity. Details are in this article:

A university O365 account is not the ideal way to send Massmail. The university has identified best practices and official tools for sending Massmail.
Email, Guidelines and best practices for Massmail, bulk mail, and survey mail ( –

There is an exception policy for select business cases.

Students should watch for additional information about two-factor authentication this spring and summer. Students are encouraged to register for Duo 2FA and begin using the mobile app now to be ready when 2FA is required.

Two-factor authentication provides an additional layer of protection for the university and the individual. Learn more about Duo and the Duo mobile app 2FA – Getting started with Duo (

Remember, YOU are the first line of defense in keeping personal information and university data safe. Watch for messages that seem too good to be true, think before you click, and report suspicious emails immediately using the new report spam button. Cybercriminals continually evolve their phishing strategies, and the university will add new detection and prevention methods in coming weeks and months. By combining individual action with university tools, we can better safeguard people and resources.

Visit for more information about avoiding phishing and cybersecurity training.


Chuck Geigner
Interim Chief Privacy and Security Officer

MASSMAIL of this announcement can be found here: