Trending Security Topics

Cybersecurity Awareness Basics

How to avoid identity theft, frauds, scams and more. Click below for more information.

Cybersecurity Basics

Why You Should Take Social Media Account Takeover As Seriously As A BEC Attack

When a social media account is taken over, it’s much more than an inconvenience. Not only can the attacker access private and potentially sensitive information, they also have the power to broadcast any message they like, either publicly or to a trusted contact. Naturally, this can have a devastating impact on the account’s real owner.

From “Security Boulevard” Stacy Shelley (1/24/2020)

New Scary Email Scam Goes After Your Banking Info

Here’s how the scam works: after a Citibank customer is fooled into entering their login information, they are shown forms that request personal information. That includes name, date of birth, address, the last four digits of their social security number, their debit card number and other card information that is typically requested like security codes.

From “Fox News Wilmington” Tyler McCarthy (1/23/2020)

OUCH! Newsletter: Social Media Privacy

Most people would never consider walking into a crowded room and loudly broadcasting to total strangers all the details of their private life—from their health issues to their family and friends’ names, ages, jobs, or school locations. But often these same individuals won’t think twice about posting that same information on social media. The ramifications of sharing too much can have an impact not only on your personal and professional life but also the lives of your family and friends.

From “SANS OUCH Newsletter” Cathy Click (2/05/2020)

Top Spear Phishing Attacks & How To Reduce The Risk Of Your Employees Taking The Bait

Despite all of the strides made in the security industry to mitigate phishing scams, they continue to be one of the most successful forms of fraud. One of the primary reasons is due to the extensive efforts bad actors are making to research and observe their targets’ behavior.

From “JHA Strategically Speaking” Keith Haskett and Karen Crumbley (2/26/2020)


FTC Shutters Hundreds of ‘Fake’ Websites

The sites lured U.S. consumers into providing personal information, including credit card and drivers' license numbers, in exchange for quick and easy access to government services, according to the FTC. Instead, users typically received a PDF document containing information that's already publicly available from the government, the agency says.

From “Bank Info Security” Ishita Chigilli Palli (2/7/2020)


Making Mobile Payments? Protect Yourself From Scams.

People have told the FTC they lost money to scammers using mobile payment apps. Some of these thieves pretend to be someone you know asking for money — say, for an emergency. Others say they’re with the app company or your bank. Still other scammers with access to your contacts might trick you into thinking they’re someone you’ve given money to before.

From “Federal Trade Commission” Lisa Lake (2/04/2020)


Does Your Domain Have A Registry Lock?

If you’re running a business online, few things can be as disruptive or destructive to your brand as someone stealing your company’s domain name and doing whatever they wish with it. Even so, most major Web site owners aren’t taking full advantage of the security tools available to protect their domains from being hijacked.

From “Krebs on Security” Brian Krebs (1/20/2020)


SMS Phishing Campaign Used To Spread Emotet: Report

It appears that attackers are sending malicious SMS messages from what appear to be local U.S. phone numbers to banking customers concerning a locked bank account. Those text messages contain a link that takes the victim to a website that mimics a bank's legitimate mobile banking landing page, but uses a different top-level domain.

From “Bank Info Security” Ishita Chigilli Palli (2/21/2020)


FTC: The Bottom-Line On Fake Checks Scams

If someone you don’t know sends you a check and asks for money back, that’s a scam. Fake checks drive many types of scams — like those involving phony job and income opportunities, online classified ad sales, and others.

From “Federal Trade Commission” Colleen Tressler (2/10/2020)


IC3 Issues Alert On Employment Scams

The Internet Crime Complaint Center (IC3) has issued an alert warning consumers of fake jobs and hiring scams targeting applicants’ personally identifiable information (PII). Cyber criminals posing as legitimate employers spoof company websites and post fake job openings to lure victims. Cyber criminals will conduct fake interviews and even offer positions to victims before requesting PII such as Social Security numbers and bank account information.

From “CISA” (1/22/2020)


IRS Launches “Identity Theft Central” Webpage

The Internal Revenue Service (IRS) has launched its “Identity Theft Central” webpage to provide 24/7 access to online information regarding tax-related identity theft and data security protection. Tax-related identity theft occurs when someone steals personal information to commit tax fraud.

From “IRS” (2/04/2020)

5 Tips For Protecting Your Tax Return From Fraudsters (Click link to see full article.)

Benjamin Franklin once said, “Nothing is certain except death and taxes.” But just as you can count on tax time happening each year, you can be certain there will be scammers trying to steal your personal information and tax refund.

From “South Strand News” Curtis Loftis (2/21/2020)