HACKERS BRIEF from CyberWyoming QUICK TO CALL, QUICK TO SCAM! A Laramie resident reported receiving a scam call from a 520 (Arizona) number. The caller claimed to be from QuickBooks support, stating that the recipient was using an outdated version of QuickBooks Desktop, which would no longer be supported after a specific date. The caller urged the recipient to upgrade by calling a Louisiana-based number to avoid service interruptions. However, the reporter confirmed that they had never used QuickBooks Desktop, realizing it was a scam. Further research showed that the phone num- ber was associated with a Robocaller Warning. CyberWyoming Note: Beware of scams that create a false sense of urgency, like claiming you must act quickly to avoid service interruptions. Always verify the source before responding to unsolicited calls, especially those asking for personal information or payments. In this case, QuickBooks users should contact official support directly through their website or trusted channels, not via numbers provided in suspicious calls. Don't rush-scammers rely on urgency to trick you. WATCH OUT FOR FAKE W2 REQUESTS! A citizen reported receiving a suspicious scam email with the subject line "IMPORTANT W2 INFORMATION REQUIRED." It claims to be from a company, asking the recipient to verify their personal information (address, social security number, and date of birth) by logging into an employee portal before a specified deadline. The email includes a PDF attachment and urges the recipient to contact the email ending in @boosfs.com for help. The recipient did not click on the attachment and promptly reported the email, suspecting it to be a scam. CyberWyoming Note: Be vigilant as end-of-year scams are starting early; never click on suspicious links or attachments in unsolicited emails and verify any requests for personal information directly through official channels. HOW USDA OUTSMARTED PHISHERS The U.S. Department of Agriculture (USDA) used Fast IDentity Online (FIDO) technology to create a secure way for employees to access systems without relying on passwords, which are vulnerable to phishing attacks. This was especially important for seasonal work- ers and those in special environments who couldn't use traditional ID cards. By using centralized technology like Microsoft Entra ID, USDA added FIDO to key systems like Windows login, VPN, and Single Sign-On (SSO). This approach helped them quickly improve security and meet the needs of different workers. USDA's experience shows how other organizations can improve security by using FIDO and making small, steady improvements. - Brought to you by CISA https://www.cisa.gov/resources-tools/resources/phishing-resis- tant-multi-factor-authentication-mfa-success-story-usdas-fast-identi- ty-online-fido CRITICAL KIA FLAWS ALLOWED REMOTE CAR THEFT VIA LICENSE PLATE Security researchers discovered essential vulnerabilities of Kia's dealer portal that allowed hackers to remotely control and steal vehicles made after 2013 using just a license plate number. The flaws exposed sensitive owner information and allowed remote access to vehicle functions, such as unlocking, starting, or locating cars. Hack- ers could also silently add themselves as authorized users without alerting the owner. The issue was fixed, and there is no evidence of malicious exploitation. Similar flaws were found in 2022, affecting millions of vehicles from other major car brands. -Brought to you by Secure The Village & Bleepingcomputer.com https://www.bleepingcomputer.com/news/security/kia-dealer-portal- flaw-could-let-attackers-hack-millions-of-cars/ MCAFEE IMPERSONATION SCAMS AND HOW TO FIGHT THEM Scammers send fake antivirus invoice PDFs via email, creating ur- gency to trick victims. When victims call the number on the invoice, they are misled into installing software that gives scammers access to their computer. The scammers then claim an incorrect refund was processed and instruct the victim to withdraw cash and convert it to Bitcoin, which they steal. What to Do 1. Delete Suspicious Emails: Don't engage with them. 2. Stay Calm: Avoid rushed decisions. 3. Verify Contacts: Use official numbers for any concerns. 4. Protect Info: Real companies won't ask for sensitive info through unsolicited messages. 5. Consult Others: Talk to trusted people or contact your bank. 6. Avoid Bitcoin Requests: Legitimate companies don't ask for Bitcoin payments. Brought to you by Secure The Village & ZDNET https://www.zdnet.com/article/did-you-get-a-fake-mcafee-or-norton- invoice-how-the-seam-works-and-what-not-to-do/ MS-ISAC AND CISA PATCH NOW ALERT The Multi-State Information Sharing and Analysis Center (MS- ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for Palo Alto PAN-OS and Apple products. If you use these products, make sure the software (or firmware) is updated. DATA BREACHES IN THE NEWS Centennial Bank, Polaris Wireless, LCPtracker, Inc., and Forney ISD. Note: If you have an account with any of these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax. Please report scams you may experience to phishing@cyberwyo- ming.org to alert your friends and neighbors. VICTIM SUPPORT: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraud- support to learn more about the free program and register. Hackers Brief from Cyber Wyoming brought to you by FIRST FEDERAL BANK & TRUST 307.674.0464 | www.efirstfederal.bank HACKERS BRIEF from CyberWyoming QUICK TO CALL , QUICK TO SCAM ! A Laramie resident reported receiving a scam call from a 520 ( Arizona ) number . The caller claimed to be from QuickBooks support , stating that the recipient was using an outdated version of QuickBooks Desktop , which would no longer be supported after a specific date . The caller urged the recipient to upgrade by calling a Louisiana - based number to avoid service interruptions . However , the reporter confirmed that they had never used QuickBooks Desktop , realizing it was a scam . Further research showed that the phone num- ber was associated with a Robocaller Warning . CyberWyoming Note : Beware of scams that create a false sense of urgency , like claiming you must act quickly to avoid service interruptions . Always verify the source before responding to unsolicited calls , especially those asking for personal information or payments . In this case , QuickBooks users should contact official support directly through their website or trusted channels , not via numbers provided in suspicious calls . Don't rush - scammers rely on urgency to trick you . WATCH OUT FOR FAKE W2 REQUESTS ! A citizen reported receiving a suspicious scam email with the subject line " IMPORTANT W2 INFORMATION REQUIRED . " It claims to be from a company , asking the recipient to verify their personal information ( address , social security number , and date of birth ) by logging into an employee portal before a specified deadline . The email includes a PDF attachment and urges the recipient to contact the email ending in @ boosfs.com for help . The recipient did not click on the attachment and promptly reported the email , suspecting it to be a scam . CyberWyoming Note : Be vigilant as end - of - year scams are starting early ; never click on suspicious links or attachments in unsolicited emails and verify any requests for personal information directly through official channels . HOW USDA OUTSMARTED PHISHERS The U.S. Department of Agriculture ( USDA ) used Fast IDentity Online ( FIDO ) technology to create a secure way for employees to access systems without relying on passwords , which are vulnerable to phishing attacks . This was especially important for seasonal work- ers and those in special environments who couldn't use traditional ID cards . By using centralized technology like Microsoft Entra ID , USDA added FIDO to key systems like Windows login , VPN , and Single Sign - On ( SSO ) . This approach helped them quickly improve security and meet the needs of different workers . USDA's experience shows how other organizations can improve security by using FIDO and making small , steady improvements . - Brought to you by CISA https://www.cisa.gov/resources-tools/resources/phishing-resis- tant - multi - factor - authentication - mfa - success - story - usdas - fast - identi- ty - online - fido CRITICAL KIA FLAWS ALLOWED REMOTE CAR THEFT VIA LICENSE PLATE Security researchers discovered essential vulnerabilities of Kia's dealer portal that allowed hackers to remotely control and steal vehicles made after 2013 using just a license plate number . The flaws exposed sensitive owner information and allowed remote access to vehicle functions , such as unlocking , starting , or locating cars . Hack- ers could also silently add themselves as authorized users without alerting the owner . The issue was fixed , and there is no evidence of malicious exploitation . Similar flaws were found in 2022 , affecting millions of vehicles from other major car brands . -Brought to you by Secure The Village & Bleepingcomputer.com https://www.bleepingcomputer.com/news/security/kia-dealer-portal- flaw - could - let - attackers - hack - millions - of - cars / MCAFEE IMPERSONATION SCAMS AND HOW TO FIGHT THEM Scammers send fake antivirus invoice PDFs via email , creating ur- gency to trick victims . When victims call the number on the invoice , they are misled into installing software that gives scammers access to their computer . The scammers then claim an incorrect refund was processed and instruct the victim to withdraw cash and convert it to Bitcoin , which they steal . What to Do 1. Delete Suspicious Emails : Don't engage with them . 2. Stay Calm : Avoid rushed decisions . 3. Verify Contacts : Use official numbers for any concerns . 4. Protect Info : Real companies won't ask for sensitive info through unsolicited messages . 5. Consult Others : Talk to trusted people or contact your bank . 6. Avoid Bitcoin Requests : Legitimate companies don't ask for Bitcoin payments . Brought to you by Secure The Village & ZDNET https://www.zdnet.com/article/did-you-get-a-fake-mcafee-or-norton- invoice - how - the - seam - works - and - what - not - to - do / MS - ISAC AND CISA PATCH NOW ALERT The Multi - State Information Sharing and Analysis Center ( MS- ISAC ) or the Cybersecurity & Infrastructure Security Agency ( CISA ) has published a patch now ( update your software ) alert for Palo Alto PAN - OS and Apple products . If you use these products , make sure the software ( or firmware ) is updated . DATA BREACHES IN THE NEWS Centennial Bank , Polaris Wireless , LCPtracker , Inc. , and Forney ISD . Note : If you have an account with any of these companies , be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies : TransUnion , Experian , and Equifax . Please report scams you may experience to phishing @ cyberwyo- ming.org to alert your friends and neighbors . VICTIM SUPPORT : The AARP Fraud Watch Network and Volunteers of America ( VOA ) created a new , free program to provide emotional support for people impacted by a scam or fraud , called ReST . Visit www.aarp.org/fraud- support to learn more about the free program and register . Hackers Brief from Cyber Wyoming brought to you by FIRST FEDERAL BANK & TRUST 307.674.0464 | www.efirstfederal.bank