Highway Robbery:

A Laramie resident reported receiving a scam text claiming a toll payment was overdue and must be paid by a certain upcoming date. The message threatened vehicle registration suspension, financial penalties, and credit score damage if unpaid. It included a suspicious payment link and urged immediate action. CyberWyoming Note: Never click on links in unsolicited messages claiming urgent payments—verify directly with official sources instead. This is a common scam currently circulating in Wyoming, often using scare tactics and fake deadlines to steal personal or financial information.

Telegram Marketing & Investment Trap:

A Western Wyoming resident reported a Telegram scam where a trusted contact invited them to join a fake marketing company. The scam involved completing simple "missions" (like following accounts and sending screenshots) in exchange for small payments ($5–$10), plus bonuses for recruiting others. Eventually, the scam shifted to a "speculation" phase, urging participants to invest their earnings into Bitcoin with promises of 30–35% returns. However, to join, users had to contribute their own money, starting small but quickly escalating to thousands. The scam impersonated a legitimate marketing company, which confirmed they were not involved and had already received multiple reports that day. CyberWyoming Note: Always be cautious with unexpected job or investment opportunities—especially those that come through social media or messaging apps, even if they appear to come from someone you know. Before taking any action, independently verify the legitimacy of the company through official websites or direct phone calls, and never send money or share personal financial information. If something seems too easy or too good to be true, it probably is.

Hertz Warns Customers After Data Breach:

Hertz notified customers of a data breach linked to an external vendor, Cleo, exposing personal information like names, contact details, credit card data, and in some cases, Social Security numbers and medical info. The breach, which occurred in late 2024, was discovered on February 10, 2025. While the exact number of affected customers is unclear, over 3,400 people in Maine were impacted. Hertz offered free identity monitoring to affected customers and advised them to stay alert for signs of fraud. The company provided resources on monitoring account statements and credit reports, as well as instructions on placing fraud alerts or freezing credit.
‍– Brought to you by Mashable
‍mashable.com/article/hertz-customer-data-social-security-numbers-breach

Toll Fee Text Scams Rising Across the U.S.:

Toll fee scams are resurfacing in the U.S. through SMS phishing (smishing) attacks. Scammers send text messages pretending to be from toll authorities like E-ZPass or SunPass, urging immediate action to avoid fines or suspensions. These messages contain malicious links aimed at stealing personal and payment information. Some recipients receive up to 7 scam texts daily. To avoid falling for these scams:

• Check the phone number for legitimacy.
• Inspect the domain name in the link carefully.
• Confirm payments directly with official toll agencies.
• Avoid interacting with scammers.
• Contact the FBI Internet Crime Complaint Center ic3.gov if you receive suspicious messages.

– Brought to you by MalwareBytes
malwarebytes.com/blog/news/2025/04/toll-fee-scams-are-back-and-heading-your-way

New SVG Scams:

There is a new phishing scam involving SVG (Scalable Vector Graphics) image files, which are being used by cybercriminals to bypass traditional email security filters. In one incident, a corporate executive received an email with an SVG file attachment that, when clicked, redirected him to a convincing fake DocuSign login page. Believing it to be legitimate, he entered his credentials, which were then harvested by the attackers. The article explains that SVG files, being text-based and capable of embedding scripts, can be manipulated to execute malicious redirects. This technique makes them an effective tool for phishing, especially as most people don’t expect image files to be dangerous. Remember to verify the source before clicking on any links or opening files.
– Brought to you by MoneyLife
moneylife.in/article/fraud-alert-the-svg-image-file-scam-you-need-to-watch-out-for/76388.html

Beware of Fake QR Code Scams:

QR codes are convenient but can be risky. Scammers create fake QR codes to steal personal info or sell counterfeit tickets. Always check for tampering before scanning, and inspect links for misspellings or shortened URLs. Avoid scanning codes from unexpected messages, especially those pressuring you to act fast. If in doubt, contact companies directly through verified contact details. Keep your phone updated and use strong passwords or multifactor authentication for added protection. Report suspicious QR codes to the AARP Fraud Watch Network Helpline at 877-908-3360.
– Brought to you by AARP.
‍aarp.org/money/scams-fraud/sms-text-alerts.html

MS-ISAC and CISA Patch Now Alert:

The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for SonicWall Secure Mobile Access (SMA) 100 Management Interface. If you use this product, make sure the software (or firmware) is updated.

Data Breaches in the News:

Hertz, Ahold Delhaize, Home Telecom, Vitruvian Health, Legends International, Numotion, and Medical Express Ambulance Inc. (MedEx). Note: If you have an account with any of these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax.

Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors.

‍Other ways to report a scam:

• Better Business Bureau Scam Tracker: bbb.org/scamtracker/us/reportscam
• Wyoming Attorney General’s Office, Consumer Protection
  • Email ag.consumer@wyo.gov
  • Complaint form attorneygeneral.wyo.gov/law-office-division/consumer-protection-and-antitrust-unit/consumer-complaints

• File a complaint with the Federal Trade Commission at reportfraud.ftc.gov
• Get steps to help at www.IdentityTheft.gov
• Report your scam to the FBI at www.ic3.gov/complaint
• Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at donotcall.gov/report.html or call 1-888-382-1222, option 3
• Office of the Inspector General: oig.ssa.gov
• If you believe someone is using your Social Security number, contact the Social Security Administration’s (SSA) fraud hotline at 1-800-269-0271.
• AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360
• IRS: report email scams impersonating the IRS to phishing@irs.gov
• Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398
• Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register