The Cyber Wyoming Hackers Brief is sponsored by First Federal Bank & Trust. Be aware of the latest scams in Sheridan, Wyoming and the rest of the country.
A citizen of Laramie reported an employment scam from Jinsanye Imp and Exp Co Ltd (but really from a Gmail address) saying they needed a part-time company representative and that their offer was “very attractive”. The subject line was CONTRACT OFFER (yes, that was all caps).
Windows Defender Firewall is free with your Windows operating system
A citizen of Sheridan received an email with the subject “Order Confirmation” posing as a Microsoft Windows Defender order (but was actually from a Gmail address). The email charges a whopping $249.99 for Firewall Defender Premium Protection. Just delete the email. Windows Defender comes free with your operating system.
If you get an email saying they want to sell you a domain name for $250-$300, in this case the citizen of Laramie said the name was WyomingITSecurity.com, most likely it is ‘a scam. Curiously, this scammer, who contacted the citizen via a Gmail address, said “You can also get this domain from GoDaddy”. Note CyberWyoming: Usually when you buy a domain from a provider like GoDaddy, it costs around $10-$20.
Website Ranking Scams
If you receive an unsolicited email saying “your website is not ranking well on Google”, a citizen of Laramie wants you to know it is a scam. Do not reply to the Gmail address to get the proposal and price.
Impersonation email from Best Buy and Geek Squad
A citizen of Sheridan received an invoice branded Best Buy and Geek Squad, but from an email address notification.intuit.com, where Intuit is the company that legitimately owns Quickbooks, a popular accounting program. The bill was for $399.99, claimed to debit your checking account, and claimed to be for “full tech protection.” The scammer messed up and also listed a Gmail address to reply to as Geek Squad, but the email was otherwise very well crafted.
To remark!! Upgrade Your Email Storage Scam
If you receive a generic “mail admin” email stating that your mail storage has exceeded its limit and needs to be upgraded immediately, do not click the link. The scammer is trying to get your personal information and your credit card. Reported by a citizen of Laramie.
FTC Employment Scam Alert for Recent College Graduates
It seems normal to receive a CV request from a recruiter, but the scammer says that your CV format is “incompatible” and you are asked to send your CV to a website to “reformat” it, for a fee. costs. Remember that legitimate companies don’t ask you to pay.
FTC Formula Scam Alert
Scammers are once again taking advantage of the news. The FTC would like to remind you that if you are looking for infant formula, first do a Google search like this “product name claim scam” and if you spot a fake website, email or advertisement on social media, report it to ReportFraud.ftc.gov.
FTC Tech Support Scam Alert
Scammers often pretend to be from a well-known company like Apple or Microsoft and send you random notifications that they have found malware on your computer or device. They say the problem is urgent and they encourage you to pay for technical support you don’t need. Hang up.
FTC Student Loan Forgiveness Alert
As the US Department of Education announced another extension until August 31, 2022 to suspend student loan repayments, student loans are once again in the news and therefore a prime target for scammers. Note that the only student loan forgiveness programs are Civil Service Loan Forgiveness and Teacher Loan Forgiveness, and neither charges you for assistance to qualify for the program. The FTC would like to remind you not to share your FSA ID with anyone.
MS-ISAC and CISA patch is now on alert
The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has issued a Patch Now (Update Your Software) alert for Google’s Chrome browser, operating system Google Android, Meeting Owl Pro, Whiteboard Owl, Dominion Voting Systems ImageCast X, and Atlassian Confluence Server & Data Center products. If you use these products, make sure the software (or firmware) is updated.
Data breaches in the news
Online Gun Sites – Ranier Arms and Numbrich Gun Parts Corporation, Shields Health Care Group (Massachusetts), Transact Campus (student account holders), City of Alexandria (Louisiana) ransomware attack and possible data breach, Icarus, Pegasus Airlines, Verizon Employee Access, Linn County (Oregon), Washington University School of Medicine, MGM Resorts, Texas Department of Transportation, Zola Wedding Registry Accounts, Regional Eye Associates (West Virginia), General Motors , Chicago Public Schools, Texas Department of Insurance, Omnicell (health care company), Mercyhurst University (Pennsylvania), RefuahHealth and Parker Hannifin.
If you have an account with one of these companies, be sure to change your password and consider freezing the credit on your accounts through all three credit reporting agencies: TransUnion, Experian, and Equifax .