October is National Cybersecurity Awareness Month, and Information Technology Services encourages all employees and students to defend your data. Keep your personal information and the University’s data safe by recognizing the signs of phishing scams:
They look official. Phishing emails often have official-looking graphics and may even list a real University employee name or email signature.
They are unexpected. Be suspicious of emails that come from an unknown sender or arrive unexpectedly.
The message is urgent. Phishing emails often try to pressure you to do something immediately.
How can you guard against phishing scams? The less you share online, the less cybercriminals know about you, making you a smaller target for phishing attacks. Follow these recommendations if you do receive a suspicious email:
Make sure the sender is legitimate. Check the sender’s email address by hovering over the reply email address to see where the message is really going. Chances are it’s not an @mail.wvu.edu email address. When in doubt, reach out to the person directly by using their phone number or email from the company website. Never directly reply to the suspicious email.
Always protect your credentials. Legitimate companies will never ask you for your username and password via email because they already have that information.
Never click on attachments or suspicious links. Email attachments are the most common trick for getting you to download malicious software. Beware of links that are hidden by URL shorteners or text like “Click Here.” These links are most likely designed to steal your credentials.
Forward all suspicious emails as an attachment to ITS at defendyourdata@mail.wvu.edu for analysis.
For more ways to keep yourself and your devices safe, search "Defend Your Data" in ENEWS.