Skip to main content

Tips, tricks and scam alerts

News Letter Journal - Staff Photo - Create Article
By
CyberWyoming, Hacker’s Brief 10/11/2024 

Spotting the Red Flags in Job Scams: A Laramie resident received a scam text claiming to be from "Rachel" at Experis Recruiting & Staffing Company, offering remote job opportunities with the U.S. Office of Personnel Management (OPM). The message promised high daily earnings ($40 to $1000) and emphasized the ease of working from home with daily payments. The text included a suspicious link, making it a likely scam. CyberWyoming Note: Beware of unsolicited job offers promising big bucks with little effort—especially if they come with a suspicious link. Always check job opportunities through official channels and keep your personal info under lock and key! 

SAM Scam!: A Laramie resident received a scam letter from "Federal Processing Registry Inc.," based in Clearwater, FL, which falsely presented itself as a government entity. The letter offered to renew the recipient's SAM (System for Award Management) number for $599, even though renewing a SAM number is free and can be done in just a few minutes. The business has a poor reputation, with a BBB rating of F and an average rating of 3/5 stars. The letter is considered deceptive and possibly close to mail fraud, indicating unethical business practices. CyberWyoming Note: Always verify the legitimacy of any government-related correspondence by checking official websites or contacting the appropriate government agency directly before providing personal information or making payments. 

AI-Enhanced Phishing: AI-enabled phishing attacks leverage artificial intelligence to enhance traditional phishing techniques, posing a significant threat to cybersecurity. These attacks are characterized by highly personalized content, adaptive messaging based on user behavior, and subtle anomalies in communication that indicate AI-generated content. To mitigate these risks, organizations are advised to implement advanced email filtering, AI detection tools, behavioral analytics, continuous employee training, multi-factor authentication, and robust incident response plans. By adopting these strategies, businesses can strengthen their defenses against evolving cyber threats and safeguard sensitive information and infrastructure.  

– Brought to you by National Cybersecurity Society 

Adobe's recent Terms of Service update has sparked concerns among users: The updated terms suggest Adobe might access and analyze user content, including sensitive information, using machine learning to improve services, handle feedback, prevent fraud, address security issues, and enforce terms. This has raised privacy worries, particularly about private data being used to train AI models. Adobe claims there are no policy changes, only clearer wording, and insists they access content only for providing cloud-based features and combating prohibited content, not local files. Despite reassurances and a clarifying blog post, vague language and AI integration have led some to reconsider their subscriptions. Users are advised to review the latest updates if they have concerns about data usage. – Brought to you by EvnTec 

Beware of Phone Scam Targeting Nonprofits: 

How the Scam Works: Imposters open an AT&T account using your nonprofit’s Tax ID number. Then, they order new iPhones and have them shipped to your office. After the phones are delivered, you receive a call from scammers posing as AT&T, claiming they shipped the phones by mistake and asking you to send them back. A UPS courier arrives with a prepaid shipping label to pick up the phones. However, these phones are not returned to AT&T but to the scammers. They get the iPhones, and you get the bill for thousands of dollars worth of merchandise you didn’t order. 

Why It Happens: Since AT&T only requires a tax ID number to open an account, it’s easy for scammers to open an account in your nonprofit’s name without any other form of verification. Nonprofits' tax ID numbers are publicly available on 990 forms. 

Signs to Watch Out For 

  • Calls from AT&T about a new account you don’t remember opening. 

  • Delivery of phone or other expensive tech gadget you didn’t order. 

  • A call from someone claiming to be with AT&T asking you to send the phones back. 

What to do if this happens to you 

  • Keep the Phones: If you receive a delivery of phones you didn’t order, do not give them back to the courier who comes to pick them up. They might be from UPS, posing as UPS or another service. The important thing is to keep the phones in your possession and return them directly to AT&T.  

  • Call AT&T Directly: Instead of responding to the call, contact AT&T yourself. Explain the situation. This ensures you are actually speaking with AT&T and not a scammer.  

  • File a Police Report: This is crucial to ensure you’re not liable for the cost of the phones or any other charges associated with the fraudulent AT&T account. 

 – Brought to you by Wyoming Nonprofit Network 

MS-ISAC and CISA Patch Now Alert: The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) or advisory alert for Google Android OS, Google Chrome, Adobe products, Microsoft products, Ivanti products, and Mozilla Firefox. If you use these products, make sure the software (or firmware) is updated. 

Data Breaches in the NewsAT&T, Verizon, Dell, MC2 Data, Nationwide Recovery Service, Delta Health System, ADT, MoneyGram, Casio, Fidelity Investments, Comcast Cable, I-MED's, and MoneyGram. 

Note: If you have an account with any of these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax. 

Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors. 

Other ways to report a scam: 

Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register. 

 

--- Online Subscribers: Please click here to log in to read this story and access all content.

Not an Online Subscriber? Click here for a one-week subscription for only $1!.