The Department of Homeland Security (DHS) and the National Cybersecurity and Communications Integration Center (NCCIC) has recently posted an alert to higher education institutions to be on the lookout for attempts to steal user credentials with the intention of altering direct deposit information.
Washburn does not provide a self-service interface for payroll direct deposit, the primary target of these scams so far. However student refunds do have a self-service direct deposit interface and may be at risk if your MyWashburn credentials are compromised.
Typically credentials are being compromised by targeted phishing e-mails, these would either direct you to provide your username and password in an e-mailed reply or they may direct you to a fake MyWashburn web page linked in the e-mail.
Washburn will never ask you to provide your username and password in an e-mail, any requests to do so should be considered fraudulent and reported to firstname.lastname@example.org. If you receive an e-mail directing you to a link to the MyWashburn web page, do not click that link, instead manually type in my.washburn.edu in your web browser.
If your direct deposit information is changed, you will receive a confirmation e-mail like the one below. If receive such a message but have not made the change yourself, contact the business office at 785.670.1156 immediately.