The holiday shopping season is already under way, and so are thieves who want to steal your personal and financial information. Information Technology Services reminds all students and employees that you should NEVER use your WVU email account or your WVU credentials for personal online shopping.
Always shop on secure sites and make sure that the address in your browser begins with https://. The “s” signals “secure.” Never provide your credit card information to anyone via email.
Never connect to public, open, unencrypted wireless networks while shopping, and be skeptical and cautious with suspicious-looking emails, even those claiming to come from specific companies or shipping services. Phishing attempts are often disguised as fake invoices or tracking notices.
Avoid clicking on attachments in tracking notifications, as they could contain malware. Tracking information is most often sent in the body of the e-mail as a link. When tracking shipping statuses, be certain that the URL in the site you land on actually matches the shipping company’s name. Watch for small changes in spelling that could signal the site is a fake.
Other clues that might indicate a phishing scam include: threats for failure to act; a suspicious-looking email address for the sender; pleas for money; and misspellings and poor grammar. When in doubt, forward questionable email to DefendYourData@mail.wvu.edu.