As tax season begins, W-2 wage statements have already begun to be made available online this week. Last year, several convincing phishing messages were crafted by tax scammers and sent to Campus to trick victims into divulging personal information for criminal purposes.
These fraudsters use your stolen credentials and tax documents to commit identity theft, and file a fraudulent tax return with the IRS in order to collect a refund using your identity.
If you have consented to having an electronic copy of your W-2 statement made available online, it will only be available directly on the At Your Service Online (AYSO) website. AYSO is hosted by the University of California, Office of the President and should only be accessed using the following address:
To protect yourself against harmful links, use these tips:
- Instead of clicking links or attachments in the email notification for downloading your W2 statement, manually type in the AYSO address into your web browser’s address bar.
- Once you’ve connected to the AYSO site, ensure the link still matches the above. Verify that there is a green padlock icon next to the address, indicating a secure connection to https://atyourserviceonline.ucop.edu/ayso. If you receive any security certificate or web browser errors warning about the website, do not continue and do not enter your credentials.
- Alternatively, you may access AYSO directly from the Blu Self-Service portal (left-hand menu) at:
Note: Campus VPN and CalNet ID login are required for off-campus access to Blu.
- Report any suspicious emails by forwarding them with full headers to firstname.lastname@example.org.
More Anti-Phishing Tips and FAQs
Tax Fraud Prevention Resources