Beware clicking on the wrong Google link:
A Powell business reported that an employee googled Amazon and click on the first link in the list. Unfortunately, it was a sponsored ad, not Amazon. The result was that a large screen, supposedly from “Microsoft Defender Security Notification,” appeared on the monitor, stating that “Access to this PC has been blocked for security reasons,” with a number to call Microsoft Windows Support. The ad is a scam, the notification is a scam, and the phone number is a scam. Fortunately the employee did not call the number, nor did they click on “Allow” on the screen (which would have sent all the data on the computer to an unknown scammer). CyberWyoming note: Anyone can purchase an ad on Google and label it “Amazon,” “PayPal,” or anything else for which people often search. When you search on Google, make sure you scroll down past the “sponsored ad” section to find the link you want.
Do you want to buy a hose?
A Laramie citizen reported receiving an email offer to sell ISO certified hoses. Although the email seems legitimate, the email addresses of the sender and the receivers are from outlook.com and 163.com domains. CyberWyoming note: Don’t trust any email with an offer that you did not request. If you need commercial hoses, call your local supplier.
Beat the heat with a portable AC:
With the recent hot weather, it might be tempting to click on the link in an email offering a discounted portable AC. However, the email address of the sender is “hey at deathwishcoffee.” All the links in the email go to a scam website, so it’s best to visit your local hardware store and buy your AC from a legit organization. – Brought to you by a citizen in Las Vegas
6 Scams to watch for:
- Unexpected contact by phone, text, or email about an invoice, order, delivery, or charge you know nothing about;
- Everything is urgent and the scammer is pushy or rude to get you to act immediately;
- Unusual way to pay like gift cards, cryptocurrency, payment app, or online wire;
- Threatening to call the police if you don’t pay immediately;
- Coaching you on what to tell the bank when you withdraw or transfer money and to keep it secret;
- Romantic sweet-talk but refuses to meet in person, and then they have a hardship or emergency requiring you to send money.
– Brought to you by Wells Fargo Bank
Bogus Refund from the IRS:
Be suspicious if you get a cardboard envelope in the mail with IRS letterhead with a message “in relation to your unclaimed refund.” The letter includes contact information and a phone number that do not belong to the IRS. The IRS warns scammers are using fake letters to trick people into handing over personal information like your Social Security number and driver’s license. It’s an identity theft scam. Unsolicited mail claiming to be from the IRS, or from the Electronic Federal Tax Payment System (EFTPS), should be reported to the IRS at phishing@irs.gov. – Brought to you by The Current Tech News and IRS.gov
Fake Shark Tank advertising:
These ads, often posted on social media sites, not only claim their product has been endorsed by one of the investors, but also use photos of the individual and logos from the show and TV news broadcasters. In some cases, they even use "doctored" deep fake photos and videos in which investors appear to back their products. In other cases, scam companies try to pass themselves off as genuine firms that have won Shark Tank backing. The panel of investors have produced a video in which they warn viewers to be extra cautious. "There are businesses that are advertising online claiming to be Shark Tank companies, but they never appeared on the show," says Cuban. Diet pills are among the most common source of scams that fraudulently use the Shark Tank label. -Brought to you by Scambusters
MS-ISAC and CISA Patch Now Alert:
The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for Cisco SD-WAN, Microsoft products, Adobe products, Android. If you use these products, make sure the software (or firmware) is updated.
Data Breaches in the News:
HCA Healthcare, Crypto Platform Multichain, Nickelodeon. Latest MoveIt victims: Radisson Hotels, American National Insurance Company, TD Ameritrade, PBI Research Services, National Student Clearinghouse (NSC), Teachers Insurance and Annuity Association of America (TIAA), University of Colorado, Colorado State University, Colorado Department of Health Care Policy, Allegiant Air, United States Office of Personnel Management (OPM), Shell Oil.
Note: If you have an account with one of these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax.
Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors.
Other ways to report a scam:
- Better Business Bureau Scam Tracker: bbb.org/scamtracker/us/reportscam
- Wyoming Attorney General’s Office, Consumer Protection 307-777-6397, 800-438-5799 or ag.consumer@wyo.gov
- File a complaint with the Federal Trade Commission at reportfraud.ftc.gov
- Report your scam to the FBI at www.ic3.gov/complaint
- Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at donotcall.gov/report.html or call 1-888-382-1222, option 3
- Office of the Inspector General: oig.ssa.gov
- AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360
- IRS: report email scams impersonating the IRS to phishing@irs.gov
- Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398
- Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register