Overview
Email forwarding is used to direct incoming messages to another email address. While this can be done by you for personal use, it can also be done by a third party with malicious intent. When an email account has been compromised, a hacker will set up a forward on the account. This forward will send your email to the hacker's email account.
Critical Concepts
- When your account has been compromised, you should check your account to see if an unwanted forward was created.
- You can learn how to redirect your student email to a different address in our article: Redirect UC San Diego Student Email To Another Address
- If your account has an unwanted forward, email security@ucsd.edu describing what you found and then follow the steps below to remove the forward.
Steps to Take
Redirection of your campus username@ucsd.edu email alias
- Go to the Email Redirect Tool (Note: login is required and you must also be connected to the VPN if you are off campus to load this link).
- Confirm that the address listed after Mailbox: is your own address.
- If the address is incorrect, type in your correct email address and click Update.
Gmail
- Log-in to your student Gmail account and click the gear icon at the top-right corner.
- Click See all settings.
- Click the Forwarding and POP/IMAP tab.
- Check the Forwarding: section for any unwanted entries.
- Remove the entry entirely, or change it to a correct address if you had forwarding set up previously.
Exchange
- Connect to your email using Outlook Web Access (OWA) at mail.ucsd.edu.
- Check your signature line for information and links that are not yours.
- Check your OWA rules for actions that you do not recognize. These are often used to filter messages or forward to the hacker's account.
- Remove any entries that are incorrect.