This week’s Hacker’s Brief is from CyberWyoming.
Sir Robert Edward Business Proposal Scam: Even though Sir Robert Edward at email@example.com says he has 9.2 million to share with you as a business proposal, Sir Edward is a liar. A Laramie citizen reported this scam and said they had received it twice.
Deceased Client with Your Last Name Scam: A Laramie citizen reported an email from Bonjona Dela at firstname.lastname@example.org asking for personal information to see if her deceased client, with the same last name, is related.
Two Car Warranty Phone Scams: If you receive a recorded call with a tinge of urgency saying “this is your second notice that your car factory warranty is expiring,” it is a scam. A Laramie citizen reported receiving this call from (662) 670-7461. The second recorded call said “we have sent out several messages by mail” and to “press 9 to be removed from our list.” Experts suggest that pressing any number, even to be removed from a list, will encourage more scam callers because it indicates that your number is valid, per CyberWyoming.
Business Email Compromise Scam Reported by CyberUSA Affiliate: Be on the look for an email from Wayne Gump at Byron.email@example.com with the subject line “Tim – presentation.” The email claims that the person is driving to your office, but is late. There’s a link in the email to a presentation. Do not click on the link.
Slack for Android Password Change Alert: If you use the popular business communication app called Slack on your Android phone, Slack recommends you reset your password. The passwords were stored unencrypted and in plaintext for the past month. For more information, read the following article.
Facebook Phone Number Alert: If you gave your phone number to Facebook in 2019 or before, you may be getting more spam calls than normal because those phone numbers are currently being offered on the dark web at $20/piece. Here’s the article from Consumer Affairs.
‘Tis the Season for IRS Fraud: The IRS has issued several recent consumer warnings on the fraudulent use of the IRS name or logo by scammers trying to gain access to consumers’ financial information in order to steal their identity and assets. Watch for recycled schemes during the 2021 tax season, including COVID related schemes, such as:
- An email asking tax professionals who use IRS e-services to update their accounts that directs users to a fake website.
- Fake emails containing an IRS tax bill for the Affordable Care Act. Do not click on the attachment.
- An increase in robocalls telling taxpayers, with urgency, that they have to settle their tax bill.
- Phone scam using Taxpayer Advocate Service numbers, impersonating these advocates.
- A call saying they have your tax return and need to verify a few details in an attempt to get personal information.
The IRS does not initiate contact with taxpayers by email, text, or social media channels. For more information, click here.
Fake Clorox and Lysol Websites: The FTC announced a complaint against defendants who are using fake websites (with real product names in the web address) and real product images and logos of well-known brands like Clorox and Lysol to make people think they’re buying products from the companies’ official websites. To verify if a product offer is real, go to that company’s website.
MS-ISAC Patch Now Alert: The Multi-State Information Sharing and Analysis Center (MS-ISAC) has published a patch now (update your software) alert for Microsoft, Adobe (Photoshop, Acrobat, Illustrator, Animate, Dreamweaver, and Magento), and Apple (tvOS, watchOS, ipadOS, iOS, and Xcode) products. If you use these products, make sure the software (or firmware) updated.
Data Breaches in the US News: Chess.com, web cam app Adorcom, KeepChange (a Bitcoin exchange portal), Slack (android platform only), Comcast, Spotify, DriveSure, Teespring, MeetMindful (dating site), Bonobos (men’s clothing store), UPS/Norfolk Southern Railroad, MyFreeCams, BuyUCoin (crypto exchange), Nitro PDF, Pixlr, Fleek, Capital Economics, and OpenWRT.
If you want to report a phone, email or text scam and let your friends and neighbors know about it, forward it, or send a description of the scam, to firstname.lastname@example.org.
Other ways to report a scam:
· Better Business Bureau Scam Tracker
· File a complaint with the Federal Trade Commission
· Report your scam to the FBI
· Report unwanted calls to the Federal Trade Commission’s Do Not Call Registration or call 1 (888) 382-1222, and select Option 3
· Office of the Inspector General
Information provided by CyberWyoming Alliance, a 501c3 nonprofit affiliate of CyberWyoming.