Skip to content
MySurreyHelp

Will the University ever ask for a password by email?

The University of Surrey, its IT Services team, and the Cyber Security Team will never ask anyone to provide their password by email, over the phone, or via any online form not accessed directly through the official University website.

Any message — from any source, including one that appears to be from a University email address — asking for a password to be confirmed, reset, or provided in response to that message should be treated as a phishing attempt and reported immediately.

If there is any uncertainty about whether a password reset or login request is genuine, navigate directly to the University's login page (surrey.ac.uk) rather than clicking any link in an email.

Need more help?
Contact us via Surrey Support
Need immediate support?
Find out how

If you are unable to access Surrey Support, please contact us via our enquiry form.

Related articles

What is phishing and how does it work?
What should I do if I receive a phishing email?
What should I do if I have responded to or clicked on a phishing email?