Tips, tricks and scam alerts

Warning: Phishing Scam Targets Employees with Fake HR Requests: A Laramie company reported a recent phishing scam has surfaced, posing as a legitimate UK company (Signable) but mixing that branding with US’s Docusign. The email falsely claims to be from HR, asking recipients to sign a document titled "2024 Handbook Update" via a link. However, the absence of a dedicated HR department in the recipient's organization raises red flags. CyberWyoming Note: To protect against such scams, employees should be vigilant in scrutinizing emails and avoiding clicking on suspicious links especially those soliciting personal or confidential data. Verifying the authenticity of sender addresses, scrutinizing email content for inconsistencies like the mixing of brand names, and refraining from clicking on suspicious links are essential practices in thwarting phishing attempts. 

Legal Aid or Legal Ambush?: A Wyoming citizen received a suspicious email with the subject "? Searching for legal aid office in Rock Springs" from an email address "hello@em[random numbers].garminmapas", purportedly from someone named "Colton". The email claimed to help in ranking legal aid office locations #1 on Google Local search within 90 days or less, with a promise of no charges if unsuccessful. It then proposed a $299/month service fee for a 15-minute call to discuss client examples and details of the process. However, the recipient is not affiliated with any legal aid firms and has encountered similar scam emails offering fake services in the past. CyberWyoming Note: Remain vigilant against deceptive emails offering unsolicited services, and always verify the legitimacy of unfamiliar offers or requests before engaging further to safeguard against potential scams and protect your personal information. 

Unknown, Unspecific Text Message:  A Laramie resident reported a text message saying “I haven’t contacted you for a long time.  Do you have time recently?” from a 720 number.  The resident’s phone didn’t recognize the number and they, wisely, did not reply.  CyberWyoming Note:  Often these generic messages are sent to see if you will respond and if you do it will open you up to scams.  If you get one of these messages, just delete after you report it to phishing@cyberwyoming.org.  

Analysis on Elder Financial Exploitation: FinCEN released a Financial Trend Analysis highlighting patterns and trends in Elder Financial Exploitation (EFE), reviewing Bank Secrecy Act (BSA) data from June 15, 2022, to June 15, 2023. The analysis revealed 155,415 filings indicating approximately $27 billion in EFE-related suspicious activity. Director Andrea Gacki emphasized the role of financial institutions in detecting and preventing EFE. The majority of EFE reports involved senior scams, where money is transferred to imposters, while elder theft, where trusted individuals steal assets, accounted for about 20% of reports. FinCEN recommended that financial institutions refer potential EFE victims to the National Elder Fraud Hotline (833-FRAUD-11 or 833-372-8311) and file reports with the FBI's Internet Crime Complaint Center (https://www.ic3.gov/Home/ComplaintChoice) and the Federal Trade Commission (https://reportfraud.ftc.gov/#/). – Brought to you by Financial Crimes Enforcement Network 

https://www.fincen.gov/news/news-releases/fincen-issues-analysis-elder-financial-exploitation  

Russian Impostors in American Media: Several websites posing as local news organizations in the United States, such as D.C. Weekly and the Miami Chronicle, have recently emerged, allegedly operated by Russian entities aiming to disseminate Kremlin propaganda. These fake news outlets intersperse propaganda amidst genuine news stories, presenting a challenge in identifying disinformation. While Russia has a history of attempting to influence public discourse in the U.S., these fake news sites represent a technological advancement in their efforts to deceive American readers. The sites may serve as platforms for spreading disinformation leading up to the American presidential election in November. However, given the source of the information, there may be some exaggeration, though there is ample evidence of foreign entities, including the U.S., engaging in disinformation campaigns through social media and news outlets. 

– Brought to you by David Horton, a Wyoming retired cybersecurity professional, and SlashDot 

QR Quest for Safety: The Hidden Threat Lurking in QR Codes reveals the rise of "quishing," a cyberattack exploiting QR code trust. As QR code use surged during the pandemic for contactless interactions, so did the risk of quishing. What is Quishing?  Quishing, a term derived from “QR phishing,” refers to a cyberattack that exploits the trust associated with QR codes. Hackers create malicious QR codes that, when scanned, redirect users to fraudulent websites designed to steal sensitive information. These websites can be cleverly disguised to mimic legitimate ones, such as your bank’s login page or a popular social media platform.  These attacks lead users to fraudulent websites, jeopardizing login credentials, financial accounts, and business data. Protection involves cautious scanning, manual URL entry, secure QR code scanners, skepticism towards offers, and spreading awareness. Despite their convenience, QR codes pose a hidden danger that vigilance and education can mitigate. 

– Brought to you by KT Connections https://www.ktconnections.com/the-hidden-threat-lurking-in-qr-codes/  

MS-ISAC and CISA Patch Now Alert: The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for LenelS2 NetBox, Google Chrome, Check Point Security Gateway Products, and Progress Telerik Report Server. If you use any of these products, make sure the software (or firmware) is updated. 

Data Breaches in the News:  

Ticketmaster, CentroMed, TransUnion, ThoughtGreen Technologies, Cencora, Walmart's 401(k) retirement plan, pcTattletale, MediSecure, Sav-Rx, WD Associates, First American Financial Corporation, and Everbridge. 

Note: If you have an account with any of these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax. 

Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors. 

Other ways to report a scam: 

• Better Business Bureau Scam Tracker: www.bbb.org/scamtracker/us/reportscam 

• Wyoming Attorney General’s Office, Consumer Protection 

  • Email ag.consumer@wyo.gov 

  • Complaint form https://attorneygeneral.wyo.gov/law-office-division/consumer-protection-and-antitrust-unit/consumer-complaints 

• File a complaint with the Federal Trade Commission at www.ftc.gov/complaint 

• Get steps to help at www.IdentityTheft.gov  

• Report your scam to the FBI at www.ic3.gov  

• Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at https://www.donotcall.gov/report.html or call 1-888-382-1222, option 3 

• Office of the Inspector General:  https://oig.ssa.gov/ 

• If you believe someone is using your Social Security number, contact the Social Security Administration’s (SSA) fraud hotline at 1-800-269-0271. 

• AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360 

• IRS: report email scams impersonating the IRS to phishing@irs.gov 

• Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398 

• Report computer or network vulnerabilities to US-CERT: 1-888-282-0870 or www.us-cert.gov. Forward phishing emails or websites to phishing-report@us-cert.gov. 

Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register.