As part of our ongoing efforts to enhance the security of our email systems and protect sensitive information, we are making an important change to our email forwarding policies.

Auto-forwarding of emails will no longer be allowed. This means that users will not be able to set up rules that automatically forward all incoming emails to another email address outside of UMB. Manual forwarding of individual emails will still be possible.

Auto-forwarding rules pose significant security and liability risks. Here are some key concerns:

1. Data Leakage: Auto-forwarding can inadvertently send sensitive or confidential information to unauthorized recipients, increasing the risk of data breaches.

2. Phishing and Malware: Cybercriminals can exploit auto-forwarding rules to redirect emails to malicious addresses, potentially leading to phishing attacks or the spread of malware.

3. Compliance Issues: Allowing auto-forwarding can lead to non-compliance with data protection regulations and institutional policies, exposing the university to legal and financial repercussions.

We understand that this change may cause some inconvenience, but it is a crucial step in safeguarding our digital environment. If you have any questions or need assistance, please do not hesitate to contact the Security & Compliance group.