info@cyberwyoming.org
www.wyocan.org
www.cyberwyoming.org/alliance
307-314-2188, PO Box 2332, Laramie, WY 82073

Spotting the Red Flags in Job Scams:

A Laramie resident received a scam text claiming to be from "Rachel" at Experis Recruiting & Staffing Company, offering remote job opportunities with the U.S. Office of Personnel Management (OPM). The message promised high daily earnings ($40 to $1000) and emphasized the ease of working from home with daily payments. The text included a suspicious link, making it a likely scam. CyberWyoming Note: Beware of unsolicited job offers promising big bucks with little effort—especially if they come with a suspicious link. Always check job opportunities through official channels and keep your personal info under lock and key!

SAM Scam!:

A Laramie resident received a scam letter from "Federal Processing Registry Inc.," based in Clearwater, FL, which falsely presented itself as a government entity. The letter offered to renew the recipient's SAM (System for Award Management) number for $599, even though renewing a SAM number is free and can be done in just a few minutes. The business has a poor reputation, with a BBB rating of F and an average rating of 3/5 stars. The letter is considered deceptive and possibly close to mail fraud, indicating unethical business practices. CyberWyoming Note: Always verify the legitimacy of any government-related correspondence by checking official websites or contacting the appropriate government agency directly before providing personal information or making payments.

AI-Enhanced Phishing:

AI-enabled phishing attacks leverage artificial intelligence to enhance traditional phishing techniques, posing a significant threat to cybersecurity. These attacks are characterized by highly personalized content, adaptive messaging based on user behavior, and subtle anomalies in communication that indicate AI-generated content. To mitigate these risks, organizations are advised to implement advanced email filtering, AI detection tools, behavioral analytics, continuous employee training, multi-factor authentication, and robust incident response plans. By adopting these strategies, businesses can strengthen their defenses against evolving cyber threats and safeguard sensitive information and infrastructure. – Brought to you by National Cybersecurity Society

Adobe's recent Terms of Service update has sparked concerns among users:

The updated terms suggest Adobe might access and analyze user content, including sensitive information, using machine learning to improve services, handle feedback, prevent fraud, address security issues, and enforce terms. This has raised privacy worries, particularly about private data being used to train AI models. Adobe claims there are no policy changes, only clearer wording, and insists they access content only for providing cloud-based features and combating prohibited content, not local files. Despite reassurances and a clarifying blog post, vague language and AI integration have led some to reconsider their subscriptions. Users are advised to review the latest updates if they have concerns about data usage. – Brought to you by EvnTec

Beware of Phone Scam Targeting Nonprofits:

How the Scam Works: Imposters open an AT&T account using your nonprofit’s Tax ID number. Then, they order new iPhones and have them shipped to your office. After the phones are delivered, you receive a call from scammers posing as AT&T, claiming they shipped the phones by mistake and asking you to send them back. A UPS courier arrives with a prepaid shipping label to pick up the phones. However, these phones are not returned to AT&T but to the scammers. They get the iPhones, and you get the bill for thousands of dollars worth of merchandise you didn’t order.

Why It Happens: Since AT&T only requires a tax ID number to open an account, it’s easy for scammers to open an account in your nonprofit’s name without any other form of verification. Nonprofits' tax ID numbers are publicly available on 990 forms.

Signs to Watch Out For

  • Calls from AT&T about a new account you don’t remember opening.
  • Delivery of phone or other expensive tech gadget you didn’t order.
  • A call from someone claiming to be with AT&T asking you to send the phones back.

What to do if this happens to you

  • Keep the Phones: If you receive a delivery of phones you didn’t order, do not give them back to the courier who comes to pick them up. They might be from UPS, posing as UPS or another service. The important thing is to keep the phones in your possession and return them directly to AT&T.
  • Call AT&T Directly: Instead of responding to the call, contact AT&T yourself. Explain the situation. This ensures you are actually speaking with AT&T and not a scammer.
  • File a Police Report: This is crucial to ensure you’re not liable for the cost of the phones or any other charges associated with the fraudulent AT&T account.

– Brought to you by Wyoming Nonprofit Network

MS-ISAC and CISA Patch Now Alert:

The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) or advisory alert for Google Android OS, Google Chrome, Adobe products, Microsoft products, Ivanti products, and Mozilla Firefox. If you use these products, make sure the software (or firmware) is updated.

Data Breaches in the News:

AT&T, Verizon, Dell, MC2 Data, Nationwide Recovery Service, Delta Health System, ADT, MoneyGram, Casio, Fidelity Investments, Comcast Cable, I-MED's, and MoneyGram. Note: If you have an account with any of these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax.

Other ways to report a scam:

  • File a complaint with the Federal Trade Commission at reportfraud.ftc.gov
  • Get steps to help at www.IdentityTheft.gov
  • Report your scam to the FBI at www.ic3.gov/complaint
  • Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at donotcall.gov/report.html or call 1-888-382-1222, option 3
  • Office of the Inspector General: oig.ssa.gov
  • If you believe someone is using your Social Security number, contact the Social Security Administration’s (SSA) fraud hotline at 1-800-269-0271.
  • AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360
  • IRS: report email scams impersonating the IRS to phishing@irs.gov
  • Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398
  • Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register

Other Blogs