Defend Your Data: Phishing is getting smarter—so must we

Phishing attacks are more sophisticated than ever. Many phishing emails are now generated using AI, making them harder to detect. These messages often mimic trusted contacts or organizations and use urgency or fear to trick recipients into clicking malicious links or sharing sensitive information.

During Cybersecurity Awareness Month, Information Technology Services encourages students and employees to stay alert and report suspicious messages.

Before replying, clicking links, or downloading attachments, ask yourself:

• Does it contain an offer that’s too good to be true?
• Is the language urgent, alarming, or threatening?
• Is the writing riddled with misspellings, bad grammar, odd phrasing, or overly complex wording?
• Does it ask for sensitive information?
• Does the sender’s email address match the company it claims to be from?
• Is it impersonating someone you know, like your supervisor?

If you receive a suspicious email at your WVU address, forward it as an attachment to DefendYourData@mail.wvu.edu or use the report message button in Outlook. If you receive a suspicious email to your personal email, don’t click anything, not even the “unsubscribe” link. Just delete it.

In honor of Cybersecurity Awareness Month, learn more about keeping your data secure.