It becomes more difficult to distinguish between malicious emails and business emails. However, if you receive an email asking you to type personal information, you should perform the following checks:
Who is this?
Outlook hides the full email address from which the email was sent. Open the email, right-click the person's name, and select Open Contact Card to see the email address. In the web version, just click the person's name or picture to view the email address and anyone else. You can also view this information by displaying the message header. If the email address does not match (for example, does not match the name or inappropriate for the message sent), it's likely spam.
Does the link refer to a university URL? (bgu.ac.il)
Often links names are misleading. Put the cursor over the link to see the link real address. If this is not what it supposed to be (for example a message that seems like sent from BGU computation Center with a link NOT within a website of Ben-Gurion University bgu.ac.il), it's probably garbage or worse.
In general there is no reason for an external site to ask you to identify with the credentials of Ben-Gurion University.
Is it too good to be true?
If so, then it is probably malicious or spamming.
Is the content of the email addressed to you?
Even if it is addressed to you personally, it may still be spam.
Is there an unexpected attachment?
Do you have any reason to think that the attachment is not real?
If the attachment appears to be from a familiar contact, ask them if they sent it (but not by replying to the email).
