Cybersecurity Awareness Basics
How to avoid identity theft, frauds, scams and more. Click below for more information.
New Phishing Technique Lures Users With Fake Chatbot
As is often the case, the initial delivery channel for the phishing scam is email. Pretending to originate from DHL, the email content mentions package delivery problems which may be solved by following instructions.
From “Tech Republic” Cedric Pernet (5/23/2022)
Which Phishing Scams Are Trending In 2022?
Similar to the outdoor sport that it’s named after, phishing describes a set of activities in which a scam artist attempts to get you to divulge sensitive personal information through various forms of deception. Once obtained, the scam artist will use or sell your information to enrich themselves or use it to bolster more advanced scamming strategies.
From “Security Boulevard” Avast (5/11/2022)
Prepare For Deepfake Phishing Attacks In The Enterprise
Deepfake technology uses AI to fabricate misleading audio, video and images. To date, deepfakes have mostly served entertainment and political purposes, both innocuous and malicious. Experts warn, however, that deepfake technology also poses a variety of enterprise IT risks. Deepfake phishing, for example, involves using deepfake content to trick users into making unauthorized payments or volunteering sensitive information that cybercriminals can use to their advantage.
From “TechTarget” Ashwin Krishnan (5/01/2022)
Most Organizations That Paid A Ransom Were Hit With A Second Ransomware Attack
Cybereason on Tuesday released a report that found some 80% of organizations that paid a ransom were hit by ransomware a second time — and 68% said the second attack came less than one month later and the threat actors demanded a higher ransom amount.
From “SC Media” Steve Zurier (6/08/2022)
Tech Pros Have Low Confidence In Supply Chain Security
When it comes to taking action, 84% indicated their organization’s supply chain needs better governance than what is currently in place. Nearly one in five said their supplier assessment process does not include cybersecurity and privacy assessments.
From “Tech Republic” Esther Shein (6/05/2022)
Protecting Your Data Amid A Ransomware ‘Explosion’
“We’ve seen an uptick of chatter, if you will – just kind of doing reconnaissance, which could go a couple of ways,” Eaves said. “It could mean they’re trying to survey the landscape to see where the vulnerabilities are, in case they want to pull the lever and launch an attack. It could also be that because they know that’s our concern, they just want to create chatter and noise, play the war game and keep themselves relevant.”
From “Credit Union Times” Natasha Chilingerian (5/13/2022)
Scammers Pretend To Be U.S. Customs And Border Protection
The latest twist is imposters who pose as agents and officers from U.S. Customs and Border Protection (CBP). Here’s how the ruse might play out. Scammers send you a recorded message saying illegal items were shipped in your name and have been intercepted. Or they might talk about a “diplomatic pouch.” Or tell you a warrant is out for your arrest. They’ll demand that you pay for more information using cryptocurrency, gift cards, or wire transfers, or tell you to give them your banking account or Social Security number. Don’t do it. It’s a scam.
From “Federal Trade Commission” Kira Krown (6/02/2022)
What makes online gaming so fun is that you can play and interact with others from anywhere in the world, often you don’t even know the people you are playing with. While the vast majority of people online are out to have fun just like you, there are those who want to cause harm.
From “SANS OUCH!” Charles Goldner (6/01/2022)
How To Prepare For Hurricane Season 2022 And Avoid Storm-Related Scams
Threats from hurricanes don’t come just from wind and rain, storm surges, flooding and rip currents, or tornadoes and landslides. Hurricane-related threats also come in the form of scammers who use those weather emergencies to cheat people. Some of the most common weather-related frauds and scams include people who promise to help you with clean-up or repairs, but disappear with your money; those who pretend to be FEMA or other government agencies; people who promise you a job – if only you pay to get it; and those who promise you a place to rent – if only you wire them the money to get the place sight unseen.
From “Federal Trade Commission” Colleen Tressler (5/25/2022)
How Cyber Criminals Are Targeting Amazon Prime Day
With Amazon Prime Day 2022 set for July 12 and 13, Check Point Research is already seeing phishing emails and suspicious domains designed to scam prospective shoppers. Cyber criminals like to exploit seasonal activities and events, especially ones that garner a lot of attention from the public. Amazon Prime Day is one such seasonal event in which the retail giant kicks off a series of tempting sales for consumers looking to save money. As in past years, scammers have already been targeting Prime shoppers in an attempt to deploy malware or steal sensitive information.
From “Tech Republic” Lance Whitney (7/07/2022)
Honest employers, including the federal government, will never ask you to pay to get a job. Anyone who does is a scammer. Honest employers also will never send you a check and then tell you to send them part of the money. That’s a fake check scam.
From “Federal Trade Commission” Carol A. Kando-Pineda (6/27/2022)
3 Reasons Storing Sensitive Files In Google Drive Is A Bad Idea
Quit falling for digital Trojan horses. Train your eye to recognize these Google Drive security risks. In this guide, you’ll get a few cyber defense tips that help you stay safe.
From “Kim Komando” Serena O’Sullivan (6/07/2022)
Protect Your Medicare Number, Your Other Info, And Your Money
Scammers keep changing their stories to catch you off-guard. Some scams even ask you for your Medicare number. If anyone surprises you with a call, email, text, or message on social media and asks for money or personal information — no matter what story they tell — it’s most likely a scam.
From “Federal Trade Commission” Bridget Small (6/06/2022)
QR Code Phishing: A New Threat?
Part of the struggle in combating cyberattacks is that threat actors never stand still. Constant evolutions in tactics and threats attempt to outwit cybersecurity controls, strategies and training programs. A new threat gaining traction over the last year or so is QR code phishing. This article examines the use of QR codes in phishing along with some security tips for mitigating this threat.
From “Security Boulevard” Team Nuspire 6/09/2022)