Spam and Phishing

If a phishing/spam message originates from an internal, compromised SF State account, SF State should be notified. Compromised SF State accounts can only be resolved by SF State. Microsoft spam filtering does not scan messages sent from one SF State Exchange account to another.

Please report compromised SF State accounts to the ITS Help Desk so we can stop the phishing message distribution as quickly as possible. To report compromised SF State accounts, forward a copy of the message with full headers to Some messages that look like they are from an internal account are really spoofed messages sent using an external server. This can be identified from the message header. Spoofed messages should be reported to Microsoft. The ITS Help Desk can assist in identifying the spoofed messages.

Still Need Help?

If you weren’t able to find your answer, submit a service request ticket to the ITS Service Desk. Service request tickets are responded to during normal business hours.

Submit Service Request