One of the most evident signs that our credentials have been stolen is that we start receiving many bounced emails that we have not sent. Quite a few usually arrive, so we realize it very quickly. What we must do in such a case is to quickly change our user password, so spam emails will automatically stop being sent in our name.

We may also receive other types of emails indicating that access to the mailbox has been restricted or that the quota (maximum mailbox size) has been exceeded, providing a link to identify ourselves by entering our credentials. We must delete these types of emails immediately and not enter our university credentials on any page that does not belong to the university itself. These types of emails are called phishing.

If we suspect that we have been victims of credential theft, we must change our password. To do this, we must follow the steps indicated in the article How to change your access password.