Hacker’s Brief

Hacker's Brief
Hacker's BriefHacker's Brief

This week’s Hacker’s Brief from CyberWyoming is sponsored by Campco Federal Credit Union.


Computer Support Scam: A Wyoming citizen was scammed by a hacker after pop-up windows with flashing warnings said his computer had been infected with a virus, and he needed to pay Tech Byte Solutions by writing a check to Webb Loft LLC to ‘clean up his infected computer.’ The company would not take a credit card (a warning sign) and claimed the infection was a Microsoft Edge problem.  They then asked for his passwords (another warning sign) and asked him to hold up a check to the webcam for payment. If this happens to you, unplug your computer from the internet and call someone you trust to help clean your computer.


Another PayPal Scam:  A new PayPal impersonation email has been reported  by a Wyoming citizen. The email this person received was from ‘lindanunn257@gmail.com,’ spoofed as billing confirmation with the subject line reading ‘Confirmation Id Transaction (Reference#).’  The email is very poorly written with improper capitalization and spelling, which is a warning sign that it isn’t real. For example, the first sentence read: ‘Thank you For Placeing a Order With Paypal And Is Preparing It For Shipment in (Arizona) If You Want to Make Any Changes Like Cancelaon Kindly Call Us On Our Toll Free-+1(917)-265-9287 or +1(747)-251-4827.’

PayPal Scam from CyberWyoming 9/16/20
PayPal Scam from CyberWyoming 9/16/20


Bank Investment Scam:  The South African Government Department is not contacting Wyoming CEOs or Executives for a confidential contract award. The scam is from Mr. Riaan Mathews at viva@vivagroupindia.net, which is really interesting considering that he has an India email address but claims to be representing South Africa. The subject line reads ‘BANK INVESTMENT!!’ and he claims to need help transferring money to a contractor in the U.S., promising to split $17 million with you if you help. It is a typical credential theft scam as he specifically asks for your company’s name, address and banking details.

Sample scam email from Cyber Wyoming
Sample scam email from Cyber Wyoming 9/15/20


MS-ISAC Patch Now Alert: The Multi-State Information Sharing and Analysis Center (MS-ISAC) has published a patch now (update your software) alert for Google’s Chrome browser, Google’s Android operating system, Adobe InDesign, Adobe Framemaker, Adobe Experience Manager, Microsoft, Palo Alto (PAN operating system) and SAP (Marketing, NetWeaver, Fiori, Banking Services, Commerce, Business Objects, Adaptive Server Enterprise, and S/4Hana) products. If you use these products, make sure the software updated.


Fake Apple Watches & Fitness Trackers Alert: Beware of Apple watches and fitness trackers that are being cloned and sold in China, and even if you realize you’re not getting the American brand, think about what personal information those watches and fitness trackers keep in their database. Do you really want an unknown, foreign company to have your name, address, email address, and know where you typically walk, hike or run?


FTC WhatsApp and Facebook Alert: The Federal Trade Commission (FTC) wants you to know that free COVID-19 money offers on WhatsApp and Facebook are scams. Even though it looks legitimate and could be from big brand names like Pepsi, Walmart, and more, it is not real. The scammers are using legitimate company names to try to get your money.


Data Breaches in the News: Warner Music, American Payroll Association, Utah Pathology Services, Staples (customer order info), Artech (staffing firm), Mailfire (online marketing tools), Razer (gaming hardware), United Airlines (traveler ticket data), Digital Point (webmaster community forum), Service NSW and Telmate (prison phone service).


If you want to report a phone, email or text scam and let your friends and neighbors know about it, forward it, or send a description of the scam, to phishing@cyberwyoming.org.

Other ways to report a scam:
·       Better Business Bureau Scam Tracker
·       File a complaint with the Federal Trade Commission
·       Report your scam to the FBI
·       Report unwanted calls to the Federal Trade Commission’s Do Not Call Registration or call 1 (888) 382-1222, and select Option 3
·       Office of the Inspector General


Information provided by CyberWyoming Alliance, a 501c3 nonprofit affiliate of CyberWyoming.