Here is some information about phishing emails at WSU.
There have been some fairly sophisticated phishing email(s) circulating, targeting (and often times even coming from) WSU addresses. Washington State University is very aware of the situation and is working hard to eliminate the issue.
Phishing emails have several distinguishing characteristics such as:
If you receive an email that has one of the above characteristics, DO NOT CLICK ON ANYTHING in the message. Simply delete the message—no further response is necessary. If you are not sure if the message is legitimate, you can forward the email to firstname.lastname@example.org or call the Crimson Service Desk to research the email.
If you did click on the link, immediately change your password by going to account.wsu.edu We suggest that you keep an eye on your email to make sure that you are still able to send and receive messages. If you notice that you are no longer receiving email, your account may have had a forward put on that is redirecting your email to a non-WSU address. We suggest that you log in to your Office 365 account via an Internet browser and make sure that there are no forwarding rules or redirects in place. Often times, if an account is compromised, an Inbox rule or email forwarding is set up to push mail out of your account to a malicious email address.
How to check if your email is being redirected or forwarded: