Please be advised that a new phishing campaign is circulating from varying senders attempting to impersonate WCU employees. This is known as a Spear Phishing Campaign, where bad actors use an external email address disguised as a known person of rank or authority, to request urgent discrete email communications, prompting for personal information like cell phone and bank accounts, or to purchase gift cards on their behalf. Please see the example of Spear Phishing below - these are fake messages.
Always verify the sender and sender's email address and when in doubt call the person to confirm. Please do not click any links or respond to the email. Never send passwords over email and do not reply to messages soliciting personal information.
If you have responded to the email or clicked the link and provided your WCU account information, please reset your password immediately at https://password.wcupa.edu.
To see the latest phishing attempts, visit our Phish Bowl at: https://www.wcupa.edu/infoServices/security/phishBowl.aspx.
To learn more about what phishing is, visit the Phishing: Don't Take the Bait! knowledge article: https://wcupaprod.service-now.com/kb?id=kb_article_view&sysparm_article=KB0011256.
If you have any questions, please contact the IS&T Help Desk at https://www.wcupa.edu/servicenow.
