ℹ️ Never share your username or password. If anyone asks for them by email, text, or phone, it’s a scam.
⚡Report any security breach or suspected breach on a University device, account, or system to the Helpdesk immediately.
- Latest scams
- How to spot a scam email, text message or call
- Think you got a scam email or message? Here's what to do
- Email security here at Herts
- Need more support?
⚠️Latest scams
- In early January, a phishing scam targeted the University with fake tuition‑fee and account‑closure emails. These did not come from the University.
- If you received one, ignore it and delete it.
- Do not click links, reply, or make any payments.
- If you didn’t click or reply, your data is safe.
- For full guidance — including what to do if you did click a link — visit our latest scams targeting students page.
- You can also learn about common student scams such as fake captchas, HMRC impersonation, student‑focused fraud, phishing, and social engineering.
How to spot a scam email, text, message or call
ℹ️Phishing emails try to make you act fast. They can look real, and anyone can be tricked. Protect yourself by following these tips.
- Never share personal, financial or login details. The University will never ask for your password.
- Check the sender. University emails about payments or account issues should come from an @herts.ac.uk address — not Gmail, Hotmail, or @herts‑ac.live.
- Be careful with payments. The University will not send bank details by email. Always use approved payment method.
- Use strong passwords and turn on two-factor authentication
- Take your time. Scammers create false urgency (e.g., “missed deadline”, “outstanding payment”). The University will not pressure you. If unsure, contact the Helpdesk at helpdesk@herts.ac.uk or Ask Herts.
More help and guidance
- Staying safe online – simple tips to protect your money, data and devices.
- National Cyber Security Centre – how to spot scam emails, texts and calls
Think you've received a scam email or message? Here’s what to do
- Do not click on any links or attachments
- Do not reply, especially be wary of an 'unsubscribe' link
- If you do reply, then the spammers know that your address is valid and you will receive more spam
- Delete the email, text, or message from your inbox
ℹ️If you have responded to a fraudulent message with your University account details, you must immediately contact the Helpdesk:
- Telephone +44 (0)1707 284678 or ext 4678. (available 24/7)
- Email: helpdesk@herts.ac.uk (Monday to Friday 08:00 to 17:00)
⚠️If we spot anything suspicious on your University account, we will reset your password to keep you safe. If you don’t have Multi‑Factor Authentication (MFA) turned on, your account will be disabled and you’ll need to contact the Helpdesk to get it restored.
Email security at Herts
The University uses Mimecast to protect your @herts.ac.uk email from harmful messages, phishing and spam.
How Mimecast protects you:
- Scans incoming emails for viruses, spam and dangerous links.
- Holds suspicious emails so they don’t reach your inbox.
- You’ll get a daily email from postmaster@herts.ac.uk showing any held messages.
Your options for held emails:
- Release – send this email to your inbox (future emails still held)
- Permit – send it to your inbox and mark the sender as safe
- Block – delete it and block the sender
ℹ️ Held messages are deleted after 14 days.
- Check your held messages anytime
- Log in with your username@herts.ac.uk and password
- For more information see Mimecast's guide for managing held messages via the personal portal.
Link protection
- Mimecast checks links before opening them, so the URL may look different. This is normal.
Attachment protection:
- Unsafe attachments are blocked. Sometimes a harmful file is replaced with a safe PDF version.
Undeliverable emails:
- If your email can’t be delivered, you’ll get a Mimecast PostMaster message. This is expected.
Need more support?
If you think an email was blocked by mistake or you’re unsure what to do, contact the Helpdesk:
- Telephone +44 (0)1707 284678 or ext 4678. (available 24/7)
- Email: helpdesk@herts.ac.uk (Monday to Friday 08:00 to 17:00)