Fake Friends, Real Scams:

A Laramie resident reports receiving text messages from an unknown number with a Pennsylvania (267) area code pretending to know them, using phrases like "Hey honey" or "Do you want to go to party this weekend?" CyberWyoming Note: These messages are designed to create a sense of familiarity and trust, often leading to further manipulation or attempts to gather personal information. If you receive a message from someone you don’t recognize acting overly familiar, it's best not to respond and block the sender.

Phishing for Paychecks:

A Cybersecurity Business Counselor from a different state reported a phishing attempt targeting their daughter’s company, which manages HR for 80 restaurant franchises. Three fraudulent emails, posing as legitimate employees, requested direct deposit updates. Suspicion arose when one email was unusually well-written for the employee. The company caught the scam and now asks if they should notify the bank or the FBI. They've already improved security by requiring employees to update deposit info only through a secure payroll portal. CyberWyoming Note: Ensure all direct deposit updates are made through a secure, authenticated portal, and train staff to verify any unusual communication, especially requests involving sensitive financial information.

AI Scam Alert: Fake Google Calls Are Stealing Gmail Accounts:

A new Gmail hack has surfaced, using AI to impersonate Google in an extremely convincing scam. The attack starts with a phone call from a spoofed Google number, where an AI-generated voice claims someone from another country has accessed your account and downloaded your data. The scammer then sends a fake email that looks like it comes from Google, trying to steal your credentials. Additionally, the Wyoming SBDC hosted a free webinar on October 17, focusing on protecting phones from cybercriminals. For more information, including screenshots of the scam, refer to the articles below. – Brought to you by SBDC and CyberWyoming
‍wyomingsbdc.org/events/protecting-your-phone-from-cyber-criminals/
sammitrovic.com/infosec/gmail-account-takeover-super-realistic-ai-scam-call/

Malvertising Targets Google Searches: Rise in Cybercrime:

Malvertising, a rising cyber threat, involves hackers using online ads for malicious purposes, often appearing during Google searches or on mainstream websites. This technique has seen a 42% increase in incidents, affecting major brands like Lowe’s and Slack. These malicious ads can either deceive users into clicking harmful links or exploit passive site visits. Experts recommend avoiding clicks on sponsored links and verifying URLs before interacting with websites. Keeping your browser and operating system updated is crucial to prevent “drive-by-downloads” from exploiting vulnerabilities. Installing anti-malware software and using ad blockers can also help reduce risks. As malvertising becomes more sophisticated, remaining vigilant and cautious online is essential for protection.
‍– Brought to you by Secure The Village & CNBC cnbc.com/2024/09/05/google-searches-big-target-for-malvertising-hackers.html

Cyberattackers Use Google Sheets for Espionage:

In August 2024, Proofpoint discovered a new malware campaign using Google Sheets for control and data theft. Targeting over 70 organizations globally, attackers impersonate tax authorities to trick victims into clicking malicious links. The malware, called Voldemort, hides in a Windows shortcut that runs a Python script, gathering system data and executing harmful actions. Around 20,000 phishing emails were sent in this attack, which combines advanced persistent threat (APT) techniques with cybercrime tactics. Researchers suspect the campaign is linked to espionage, though the exact goals remain unknown.
‍– Brought to you by The Hacker News thehackernews.com/2024/08/cyberattackers-exploit-google-sheets.html

PartnerLeak Con That Claims to Expose Cheaters:

The PartnerLeak scam site targets individuals by claiming to offer evidence of a cheating partner. The scam emails promise access to a partner’s stolen data, including social media activity and personal files, through a site that redirects from a misleading link. Registered on August 1, 2024, the site pretends to provide anonymous, AI-powered insights into a partner's behavior but requires payment for full access. Although cryptocurrency payment options appear inactive, credit card transactions may still be functional. Despite the site's claims, there is no evidence linking it to data breaches from reputable sites like The Knot. Victims should avoid engaging with these emails, not reply, and be cautious of unsolicited attachments. – Brought to you by Malwarebytes malwarebytes.com/blog/news/2024/09/partnerleak-scam-site-promises-victims-full-access-to-cheating-partners-stolen-data

MS-ISAC and CISA Patch Now Alert:

The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) or advisory alert for Palo Alto Network’s Expedition, Oracle products, and Google Chrome. If you use these products, make sure the software (or firmware) is updated.

Data Breaches in the News:

Fidelity Investments, The Internet Archive, Omni Family Health, Star Health, Cisco, Varsity Brands, and Gryphon Healthcare. Note: If you have an account with any of these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax.

‍

Other ways to report a scam:

• Better Business Bureau Scam Tracker: bbb.org/scamtracker/us/reportscam
• Wyoming Attorney General’s Office, Consumer Protection
  • Email ag.consumer@wyo.gov
  • Complaint form attorneygeneral.wyo.gov/law-office-division/consumer-protection-and-antitrust-unit/consumer-complaints

• File a complaint with the Federal Trade Commission at reportfraud.ftc.gov
• Get steps to help at www.IdentityTheft.gov
• Report your scam to the FBI at www.ic3.gov/complaint
• Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at donotcall.gov/report.html or call 1-888-382-1222, option 3
• Office of the Inspector General: oig.ssa.gov
• If you believe someone is using your Social Security number, contact the Social Security Administration’s (SSA) fraud hotline at 1-800-269-0271.
• AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360
• IRS: report email scams impersonating the IRS to phishing@irs.gov
• Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398
• Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register