HACKERS BRIEF from CyberWyoming Please report scams you may experience to phishing@cyberwyoming org to alert your friends and neighbors. ACCESSING AMAZON ACCOUNT FROM MUMBAI? A Big Horn citizen received a scam text claiming to be from Amazon, warning of suspicious activity on their account from Mumbai, India. The message included a suspicious link and came from an unknown number with a Canada (416) area code. Fortunately, the citizen recognized it as a scam, reported it as junk, and deleted the message. CyberWyoming Note: Always be cautious of unsolicited text messages, especially those with suspicious links or unfamiliar numbers. Verify account alerts through official channels and avoid clicking on any links in messages you did not expect. TOLL TALES A Laramie resident reported receiving a scam text claiming to be from "EZDriveMA" regarding an unpaid toll invoice, urging payment that day to avoid late fees. The message included a suspicious link along with instructions to reply and open the link in a browser. The resident identified it as a scam due to the email address (techchicas. appleaccount), their lack of recent toll road usage, and the urgency of the message. Cyber Wyoming Note: This wasn't the only report of fake toll texts circulating in the area, signaling a growing trend of similar scams. Always verify unexpected messages about payments or invoic es, especially if they come from unfamiliar email addresses or urge immediate action. Avoid clicking on links or replying; instead, contact the company directly through official channels to confirm the claim. SCAMMERS EXPLOIT LOS ANGELES WILDFIRE RELIEF EFFORTS: Authorities are warning the public about scammers exploiting the generosity of people trying to help victims of the ongoing Los An- geles wildfires. Fraudulent organizations, often targeting vulnerable groups such as the elderly and non-English speakers, have been mis- leading donors into giving money under false pretenses. Officials urge donors to research charities through trusted platforms like Charity Navigator, Charity Watch, GuideStar, and the Better Business Bureau before contributing. They also recommend avoiding cash donations and using secure, traceable payment methods. - Brought to you by ABC News. https://abcnews.go.com/US/beware-scams-donating-la- fire-victims-officials-warn/story?id=117605591 UPDATE: POWERSCHOOL DATA BREACH EXPOSES PERSONAL INFO A recent cyberattack on PowerSchool, a major U.S. education tech- nology provider, has exposed sensitive data from multiple school districts. Hackers gained access to historical data on students and teachers, including personal details such as names, addresses, Social Security numbers, and medical information. The breach, which occurred in December, affected both current and former records of individuals across K-12 schools using PowerSchool's system. Some districts reported that attackers accessed all historical data, with many also highlighting the lack of basic security measures like multi-factor authentication. PowerSchool has acknowledged the breach but has not disclosed the full scope or the exact number of affected schools. - Brought to you by Secure The Village & TechCrunch https://techcrunch.com/2025/01/15/powerschool-data-breach-vic- tims-say-hackers-stole-all-historical-student-and-teacher-data/ A BILLION PASSWORDS WALK INTO THE DARK WEB: A recent security report reveals that over 1 billion passwords were stolen by malware (malicious software) in 2024, compromising both consumer and organizational data. These stolen credentials are often sold on the dark web for as little as $10. Attackers use infostealer malware to harvest sensitive information, often exploiting phishing. malicious downloads, or software vulnerabilities. Despite the use of complex password policies, malware circumvents security measures, emphasizing the need for stronger practices like multi-factor authen- tication, unique passwords, and password managers. The widespread theft highlights the ongoing vulnerability of passwords, even in well-secured environments. - Brought to you by Forbes https://www.forbes.com/sites/daveywinder/2025/01/23/security-alert- issued-as-1-billion-passwords-stolen-by-malware-act-now/ CyberWy- oming Note: To prevent malware, Windows users should create two profiles: a local user for daily use (without install permissions) and a separate admin account for software installations. SMALL BUSINESS CYBERSECURITY STATISTICS FOR 2025 Cyberattacks on small businesses are rising, with small enterprises becoming attractive targets for cybercriminals due to weaker security and fewer defenses compared to larger companies. In 2021, 61% of small businesses experienced cyberattacks, with common threats including malware, ransomware, and phishing. The financial impact is significant, with costs ranging from $826 to $653,587 per incident, and many small businesses lack cyber insurance. Despite increasing cybersecurity spending, many small businesses remain unprepared, with 51% having no cybersecurity measures in place. The lack of awareness and resources leaves them vulnerable, but growing attention to cybersecurity and stronger defense measures offer hope for reducing these risks. - Brought to you by Secure The Village & https://www.strongdm.com/blog/small-business-cyber-secu StrongD. rity-statistics FORTINET AND SONICWALL VULNERABILITIES POSE MAJOR RISKS Both Fortinet and SonicWall are facing critical vulnerabilities in their firewall products, exposing thousands of devices to active exploita- tion. Fortinet's vulnerability in its FortiGate devices, tracked by the Shadowserver Foundation, has left nearly 47,000 unpatched devices globally, with over 8,000 in the U.S. still exposed to attacks that grant super-admin privileges. Similarly, SonicWall's SMA 1000 Series VPN appliances are being actively targeted, with a zero-day flaw (CVE- 2025-23006) impacting the devices. Despite patches being available, unpatched devices remain vulnerable, with the Cybersecurity and Infrastructure Security Agency urging swift updates to prevent further compromise. Brought to you by CISA, CyberNews, & The Record https://cybernews.com/security/nearly-50k-fortinet-devices-left-un- patched-and-widely-exploited/ https://therecord.media/sonicwall-devices-exposed-zero-day Please report scams you may experience to phishing@cyberwyo- ming.org to alert your friends and neighbors. Hackers Brief from Cyber Wyoming brought to you by FIRST FEDERAL BANK & TRUST 307.674.0464 | www.efirstfederal.bank HACKERS BRIEF from CyberWyoming Please report scams you may experience to phishing @ cyberwyoming org to alert your friends and neighbors . ACCESSING AMAZON ACCOUNT FROM MUMBAI ? A Big Horn citizen received a scam text claiming to be from Amazon , warning of suspicious activity on their account from Mumbai , India . The message included a suspicious link and came from an unknown number with a Canada ( 416 ) area code . Fortunately , the citizen recognized it as a scam , reported it as junk , and deleted the message . CyberWyoming Note : Always be cautious of unsolicited text messages , especially those with suspicious links or unfamiliar numbers . Verify account alerts through official channels and avoid clicking on any links in messages you did not expect . TOLL TALES A Laramie resident reported receiving a scam text claiming to be from " EZDriveMA " regarding an unpaid toll invoice , urging payment that day to avoid late fees . The message included a suspicious link along with instructions to reply and open the link in a browser . The resident identified it as a scam due to the email address ( techchicas . appleaccount ) , their lack of recent toll road usage , and the urgency of the message . Cyber Wyoming Note : This wasn't the only report of fake toll texts circulating in the area , signaling a growing trend of similar scams . Always verify unexpected messages about payments or invoic es , especially if they come from unfamiliar email addresses or urge immediate action . Avoid clicking on links or replying ; instead , contact the company directly through official channels to confirm the claim . SCAMMERS EXPLOIT LOS ANGELES WILDFIRE RELIEF EFFORTS : Authorities are warning the public about scammers exploiting the generosity of people trying to help victims of the ongoing Los An- geles wildfires . Fraudulent organizations , often targeting vulnerable groups such as the elderly and non - English speakers , have been mis- leading donors into giving money under false pretenses . Officials urge donors to research charities through trusted platforms like Charity Navigator , Charity Watch , GuideStar , and the Better Business Bureau before contributing . They also recommend avoiding cash donations and using secure , traceable payment methods . - Brought to you by ABC News . https://abcnews.go.com/US/beware-scams-donating-la- fire - victims - officials - warn / story ? id = 117605591 UPDATE : POWERSCHOOL DATA BREACH EXPOSES PERSONAL INFO A recent cyberattack on PowerSchool , a major U.S. education tech- nology provider , has exposed sensitive data from multiple school districts . Hackers gained access to historical data on students and teachers , including personal details such as names , addresses , Social Security numbers , and medical information . The breach , which occurred in December , affected both current and former records of individuals across K - 12 schools using PowerSchool's system . Some districts reported that attackers accessed all historical data , with many also highlighting the lack of basic security measures like multi - factor authentication . PowerSchool has acknowledged the breach but has not disclosed the full scope or the exact number of affected schools . - Brought to you by Secure The Village & TechCrunch https://techcrunch.com/2025/01/15/powerschool-data-breach-vic- tims - say - hackers - stole - all - historical - student - and - teacher - data / A BILLION PASSWORDS WALK INTO THE DARK WEB : A recent security report reveals that over 1 billion passwords were stolen by malware ( malicious software ) in 2024 , compromising both consumer and organizational data . These stolen credentials are often sold on the dark web for as little as $ 10 . Attackers use infostealer malware to harvest sensitive information , often exploiting phishing . malicious downloads , or software vulnerabilities . Despite the use of complex password policies , malware circumvents security measures , emphasizing the need for stronger practices like multi - factor authen- tication , unique passwords , and password managers . The widespread theft highlights the ongoing vulnerability of passwords , even in well - secured environments . - Brought to you by Forbes https://www.forbes.com/sites/daveywinder/2025/01/23/security-alert- issued - as - 1 - billion - passwords - stolen - by - malware - act - now / CyberWy- oming Note : To prevent malware , Windows users should create two profiles : a local user for daily use ( without install permissions ) and a separate admin account for software installations . SMALL BUSINESS CYBERSECURITY STATISTICS FOR 2025 Cyberattacks on small businesses are rising , with small enterprises becoming attractive targets for cybercriminals due to weaker security and fewer defenses compared to larger companies . In 2021 , 61 % of small businesses experienced cyberattacks , with common threats including malware , ransomware , and phishing . The financial impact is significant , with costs ranging from $ 826 to $ 653,587 per incident , and many small businesses lack cyber insurance . Despite increasing cybersecurity spending , many small businesses remain unprepared , with 51 % having no cybersecurity measures in place . The lack of awareness and resources leaves them vulnerable , but growing attention to cybersecurity and stronger defense measures offer hope for reducing these risks . - Brought to you by Secure The Village & https://www.strongdm.com/blog/small-business-cyber-secu StrongD . rity - statistics FORTINET AND SONICWALL VULNERABILITIES POSE MAJOR RISKS Both Fortinet and SonicWall are facing critical vulnerabilities in their firewall products , exposing thousands of devices to active exploita- tion . Fortinet's vulnerability in its FortiGate devices , tracked by the Shadowserver Foundation , has left nearly 47,000 unpatched devices globally , with over 8,000 in the U.S. still exposed to attacks that grant super - admin privileges . Similarly , SonicWall's SMA 1000 Series VPN appliances are being actively targeted , with a zero - day flaw ( CVE- 2025-23006 ) impacting the devices . Despite patches being available , unpatched devices remain vulnerable , with the Cybersecurity and Infrastructure Security Agency urging swift updates to prevent further compromise . Brought to you by CISA , CyberNews , & The Record https://cybernews.com/security/nearly-50k-fortinet-devices-left-un- patched - and - widely - exploited / https://therecord.media/sonicwall-devices-exposed-zero-day Please report scams you may experience to phishing @ cyberwyo- ming.org to alert your friends and neighbors . Hackers Brief from Cyber Wyoming brought to you by FIRST FEDERAL BANK & TRUST 307.674.0464 | www.efirstfederal.bank