With the latest ransomware scam, “Petya,” sweeping the globe, it is critical that WVU faculty, staff and students do NOT click on attachments or embedded links in emails from unfamiliar senders. These emails also could potentially be “spoofed” to appear is if they are coming from a legitimate WVU employee.
It is vital that you exercise caution and skepticism. If the nature of the request is out of the norm, please call the sender to verify its legitimacy and forward the email as an attachment to DefendYourData@mail.wvu.edu. An example of such an unusual request might be a high-ranking administrator or someone you don’t typically deal with directly asking you to transfer funds.
To help protect private and sensitive data, WVU employees will have to confirm their identities in two ways to gain access to many critical systems, starting in 2018. Two-factor authentication is a second layer of security besides your password. It means you will have to confirm your identity with two things –something you KNOW and something you HAVE.
About 360 staff, students and faculty are already using WVU’s two-factor authentication service, Duo, in a pilot that Information Technology Services has been conducting for many months. Most testers find that after the initial setup, two-factor authentication is fast and easy, taking only seconds to complete using the free smart phone app.