MacBook Mirage:

A Cody citizen reported receiving a scam call from a Florida number. Although they did not answer, they received a voicemail claiming that a $1,499 Apple MacBook Pro had been purchased on their Amazon account. The voicemail urged them to press one to dispute the charge. Recognizing it as a scam, the recipient was not concerned but still checked their Amazon account through official channels, finding no such purchase or any suspicious activity. CyberWyoming Note: Never respond to unsolicited calls or press any buttons—scammers use this tactic to trick you into providing personal information. Like this recipient, always verify claims by checking your accounts directly through official websites or apps.

Beware the VIP Treatment:

A Lander citizen reported a phishing scam involving multiple fraudulent emails from "Jean Christoff" using an unknown @consultant email address. The emails claimed the recipient was a VIP member of "Beierle Advisory" and owed a $39,850 invoice for consulting services. The scam attempted to pressure the recipient into paying, citing benefits like priority support and exclusive events. A follow-up email from a different address falsely included a reply from the recipient, appearing to confirm the charges. The recipient, however, denied any communication with "Jean Christoff," confirming the scam attempt. CyberWyoming Note: In this case, the company appears to be fake. Always be cautious of unsolicited emails claiming you owe money. Avoid engaging with the sender, and report the phishing attempt, as these emails are often attempts to scam personal or financial information.

5 Tips to Spot and Avoid Phishing Scams:

Phishing scams are common but avoidable if you know what to look for. These scams work by creating fake websites that mimic legitimate ones to steal your credentials. To avoid them, always check for obvious errors like poor design, suspicious URLs, or unsecured HTTP connections. Pay close attention to the address bar, as scammers use deceptive domain names to trick users. Be wary of urgent emails requesting immediate action and never click on links from unknown or unverified sources. Using security software, password managers, and built-in browser protections can further safeguard against phishing attempts. Stay vigilant, and don’t fall for the trap! – Brought to you by PCMag
pcmag.com/explainers/how-to-spot-and-avoid-phishing-scams-5-tips-from-our-security-expert

Cybersecurity Risks Potential with DOGE’s Federal Access:

Experts are warning that Elon Musk’s Department of Government Efficiency (DOGE) could pose major cybersecurity risks by accessing federal networks with unknown security controls. DOGE workers have reportedly accessed sensitive systems like the Office of Personnel Management and the Department of Treasury, raising concerns about data breaches and exposure to foreign adversaries. The lack of proper cybersecurity protocols could create vulnerabilities, potentially leading to significant security breaches, especially regarding national security and personal data. Experts stress the importance of adhering to established security standards to prevent exploitation.
‍– Brought to you by Secure The Village & The Record therecord.media/doge-opm-treasury-cybersecurity

Chrome Users about Syncjacking Hack:

A new cybersecurity threat called "browser syncjacking" has been discovered, allowing hackers to take full control of a Chrome browser—and even the entire device—using seemingly harmless extensions. Researchers at SquareX Labs found that any Chrome extension with basic read/write permissions can be exploited to hijack user profiles, steal credentials, and disable security protections. Hackers achieve this by tricking users into syncing their browsers with an attacker-controlled account, giving them access to stored passwords and browsing history. Unlike previous extension-based attacks, this method requires minimal user interaction, making it especially dangerous. Google has released multiple security updates, but experts warn users to be cautious when installing extensions. – Brought to you by Forbes
forbes.com/sites/daveywinder/2025/01/31/millions-of-google-chrome-users-warned-as-syncjacking-hack-gets-real/

Cybercrime the Top Travel Threat in 2025:

Cybercrime is emerging as the top safety threat for travelers in 2025, with cybercriminals targeting frequent travelers for their valuable data, such as travel rewards and payment details. Common risks include phishing scams, fake travel websites, and impersonation fraud, while AI tools have made scams more convincing. Experts urge travelers to practice good online hygiene, such as changing passwords, using VPNs on public Wi-Fi, and verifying identities before sharing sensitive information. Cybersecurity support, like digital risk monitoring services, is also recommended to help protect against these growing threats.
‍– Brought to you by Elliot Report
elliott.org/safe-travels/travelers-beware-cybercrime-is-the-top-safety-threat-in-2025/

MS-ISAC and CISA Patch Now Alert:

The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for Crowdstrike, FortiOS & FortiProxy, Ivanti, Microsoft, Palo Alto Networks, and Apple (iOS and iPadOS). If you use these products, make sure the software (or firmware) is updated.

Data Breaches in the News:

PPL Electric, Star Solution Services, Zacks Investment Research, Joseph Krar & Associates, Mars Hydro, Finastra, Kelsey-Seybold Medical Group, Innovative Renal Care, Insight Partners, and Prizm Media. Note: If you have an account with any of these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax.

Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors.

Other ways to report a scam:

• Better Business Bureau Scam Tracker: bbb.org/scamtracker/us/reportscam
• Wyoming Attorney General’s Office, Consumer Protection
  • Email ag.consumer@wyo.gov
  • Complaint form attorneygeneral.wyo.gov/law-office-division/consumer-protection-and-antitrust-unit/consumer-complaints

• File a complaint with the Federal Trade Commission at reportfraud.ftc.gov
• Get steps to help at www.IdentityTheft.gov
• Report your scam to the FBI at www.ic3.gov/complaint
• Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at donotcall.gov/report.html or call 1-888-382-1222, option 3
• Office of the Inspector General: oig.ssa.gov
• If you believe someone is using your Social Security number, contact the Social Security Administration’s (SSA) fraud hotline at 1-800-269-0271.
• AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360
• IRS: report email scams impersonating the IRS to phishing@irs.gov
• Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398
• Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register