HACKERS BRIEF from CyberWyoming Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors. SCAM EMAILS TARGETING INACTIVE ACCOUNTS A citizen reported a scam involving an email about a Facebook ac- count being suspended due to copyright infringements. The account, originally for the citizen's late father's business, is maintained by the daughter for training purposes. As no posts had been made recently, she recognized the email as a scam attempting to gain access. Cyber- Wyoming Note: Always be cautious of unsolicited emails claiming account issues, especially those asking for personal information or warning about suspensions. Verify such claims by directly logging into the platform through official channels and avoid clicking on any links or downloading attachments from suspicious messages. IMPERSONATION HITS CLOSE TO HOME A citizen reported receiving two spam emails over the past two days, both impersonating their boss. Another intern at the business also received one. The citizen's email and the intern's are not publicly available and aren't listed on social media, which raises the question of how the spammer obtained it. Given that the boss works as a gov- ernment employee for a military contractor and that the sender's email domain is from Poland, concerns have been raised about a potential Polish scammer impersonating a government worker to target the business. CyberWyoming Note: To protect against this type of scam, ensure that all employees are educated about phishing and imperson- ation tactics, and implement strong email authentication protocols. Additionally, employees should verify any unusual requests through alternate communication channels and avoid clicking on links or downloading attachments from suspicious emails. FRANKENSTEIN FRAUD Synthetic identity theft, also known as "Frankenstein fraud," involves criminals combining stolen personal data, such as Social Security numbers (SSNs), with fake or real information to create new iden- tities. These identities are used to borrow money, with the real SSN owner often left responsible for the debt. This crime predominantly targets vulnerable groups like children, the elderly, and the homeless, who are less likely to monitor their credit. It caused $20 billion in losses in 2020. To protect against it, individuals should freeze their credit, regularly check reports, be cautious of phishing scams, and safeguard personal documents containing SSNs. - Brought to you by CTV News https://www.cnet.com/personal-finance/frankenstein-fraud-how-syn- thetic-identity-theft-targets-the-most-vulnerable/ MALWARE CAUGHT IN THE ACT Malware infections on Windows computers can often go unnoticed, but there are several key signs that can help you identify if your sys- tem has been compromised. The signs include: Increased resource consumption, suspicious network activity, dis- abled security software, browser hijacking, applications opening and closing automatically, unknown files or apps, unexpected webcam or microphone activity, and slow boot times. Malware can cause spikes in CPU and memory usage, slow down internet speeds, disable antivirus programs, alter browser settings, and install unknown apps or files. If you notice any of these symptoms, investigate immediately by checking Task Manager, running malware scans, and reviewing sys- tem settings to remove the threat and protect your computer. -Brought to you by Secure The Village & How To Geek https://www.howtogeek.com/signs-your-windows-computer-has-mal- ware/ SERVICE FRAUD PREVENTION Fraud cost veterans, service members, and their families $477 million in 2023, according to the latest Federal Trade Commission (FTC) data. Scammers employ vet-focused twists on impersonation scams, investment fraud, and more. Criminals frequently impersonate the VA, often threatening to cut off benefits if you don't provide sensitive personal information or pay bogus fees. They may also contact you about investment opportunities, with low fees or special offers just for veterans. They may also claim to be a veteran themselves. The White House along with the VA unveiled new fraud prevention resources for veterans. Visit: Vsafe.gov online or reach out to the new call center at 833-38V-SAFE (833-388-7233).- Brought to you by AARP & the FTC INVITES YOU CAN'T TRUST A fast-spreading phishing campaign is using spoofed Google Calendar invites to steal user credentials and commit financial fraud. Attackers manipulate email sender headings to make the invites appear legiti- mate, often linking to Google Forms or Google Drawings to bypass security scans. The goal is to trick users into revealing personal information, which is then used for financial scams such as credit card fraud. With over 500 million Google Calendar users globally, the campaign targets a vast number of individuals. Google recommends enabling "known senders" to block these threats, while organizations can use advanced email security and employee training to defend against such attacks. - Brought to you by Secure The Village & Dark Reading https://www.darkreading.com/cyberattacks-data-breaches/phish- ers-spoof-google-calendar-invites-global-campaign MS-ISAC AND CISA PATCH NOW ALERT The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for Ivanti Ava- lanche, Fortinet Products, Adobe products, Microsoft products, and Rsyne. If you use these products, make sure the software (or firm- ware) is updated. DATA BREACHES IN THE NEWS Gravy Analytics, STIIIZY, One Blood, Inc, Mission Bancorp, Lorena ISD, ITC Investments, Inc., Avery Products Corporation, TruBridge, Inc., and HCF of Fairview, Inc. Note: If you have an ac- count with any of these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax. Hackers Brief from Cyber Wyoming brought to you by FIRST FEDERAL BANK & TRUST 307.674.0464 | www.efirstfederal.bank HACKERS BRIEF from CyberWyoming Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors . SCAM EMAILS TARGETING INACTIVE ACCOUNTS A citizen reported a scam involving an email about a Facebook ac- count being suspended due to copyright infringements . The account , originally for the citizen's late father's business , is maintained by the daughter for training purposes . As no posts had been made recently , she recognized the email as a scam attempting to gain access . Cyber- Wyoming Note : Always be cautious of unsolicited emails claiming account issues , especially those asking for personal information or warning about suspensions . Verify such claims by directly logging into the platform through official channels and avoid clicking on any links or downloading attachments from suspicious messages . IMPERSONATION HITS CLOSE TO HOME A citizen reported receiving two spam emails over the past two days , both impersonating their boss . Another intern at the business also received one . The citizen's email and the intern's are not publicly available and aren't listed on social media , which raises the question of how the spammer obtained it . Given that the boss works as a gov- ernment employee for a military contractor and that the sender's email domain is from Poland , concerns have been raised about a potential Polish scammer impersonating a government worker to target the business . CyberWyoming Note : To protect against this type of scam , ensure that all employees are educated about phishing and imperson- ation tactics , and implement strong email authentication protocols . Additionally , employees should verify any unusual requests through alternate communication channels and avoid clicking on links or downloading attachments from suspicious emails . FRANKENSTEIN FRAUD Synthetic identity theft , also known as " Frankenstein fraud , " involves criminals combining stolen personal data , such as Social Security numbers ( SSNs ) , with fake or real information to create new iden- tities . These identities are used to borrow money , with the real SSN owner often left responsible for the debt . This crime predominantly targets vulnerable groups like children , the elderly , and the homeless , who are less likely to monitor their credit . It caused $ 20 billion in losses in 2020. To protect against it , individuals should freeze their credit , regularly check reports , be cautious of phishing scams , and safeguard personal documents containing SSNs . - Brought to you by CTV News https://www.cnet.com/personal-finance/frankenstein-fraud-how-syn- thetic - identity - theft - targets - the - most - vulnerable / MALWARE CAUGHT IN THE ACT Malware infections on Windows computers can often go unnoticed , but there are several key signs that can help you identify if your sys- tem has been compromised . The signs include : Increased resource consumption , suspicious network activity , dis- abled security software , browser hijacking , applications opening and closing automatically , unknown files or apps , unexpected webcam or microphone activity , and slow boot times . Malware can cause spikes in CPU and memory usage , slow down internet speeds , disable antivirus programs , alter browser settings , and install unknown apps or files . If you notice any of these symptoms , investigate immediately by checking Task Manager , running malware scans , and reviewing sys- tem settings to remove the threat and protect your computer . -Brought to you by Secure The Village & How To Geek https://www.howtogeek.com/signs-your-windows-computer-has-mal- ware / SERVICE FRAUD PREVENTION Fraud cost veterans , service members , and their families $ 477 million in 2023 , according to the latest Federal Trade Commission ( FTC ) data . Scammers employ vet - focused twists on impersonation scams , investment fraud , and more . Criminals frequently impersonate the VA , often threatening to cut off benefits if you don't provide sensitive personal information or pay bogus fees . They may also contact you about investment opportunities , with low fees or special offers just for veterans . They may also claim to be a veteran themselves . The White House along with the VA unveiled new fraud prevention resources for veterans . Visit : Vsafe.gov online or reach out to the new call center at 833-38V - SAFE ( 833-388-7233 ) .- Brought to you by AARP & the FTC INVITES YOU CAN'T TRUST A fast - spreading phishing campaign is using spoofed Google Calendar invites to steal user credentials and commit financial fraud . Attackers manipulate email sender headings to make the invites appear legiti- mate , often linking to Google Forms or Google Drawings to bypass security scans . The goal is to trick users into revealing personal information , which is then used for financial scams such as credit card fraud . With over 500 million Google Calendar users globally , the campaign targets a vast number of individuals . Google recommends enabling " known senders " to block these threats , while organizations can use advanced email security and employee training to defend against such attacks . - Brought to you by Secure The Village & Dark Reading https://www.darkreading.com/cyberattacks-data-breaches/phish- ers - spoof - google - calendar - invites - global - campaign MS - ISAC AND CISA PATCH NOW ALERT The Multi - State Information Sharing and Analysis Center ( MS - ISAC ) or the Cybersecurity & Infrastructure Security Agency ( CISA ) has published a patch now ( update your software ) alert for Ivanti Ava- lanche , Fortinet Products , Adobe products , Microsoft products , and Rsyne . If you use these products , make sure the software ( or firm- ware ) is updated . DATA BREACHES IN THE NEWS Gravy Analytics , STIIIZY , One Blood , Inc , Mission Bancorp , Lorena ISD , ITC Investments , Inc. , Avery Products Corporation , TruBridge , Inc. , and HCF of Fairview , Inc. Note : If you have an ac- count with any of these companies , be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies : TransUnion , Experian , and Equifax . Hackers Brief from Cyber Wyoming brought to you by FIRST FEDERAL BANK & TRUST 307.674.0464 | www.efirstfederal.bank