MFA is a crucial step in protecting users from the effects of credential compromise, and we recommend that it be used on all available accounts. As you may know, multi-factor authentication (“MFA”) provides a second layer of security for your accounts by creating a “locked door”, for which you must supply a key. […]
The FCC (Federal Communications Commission) is warning consumers of the 100% rise of robotext scams within the past year. Robotext scammers may try to create a sense of fear or urgency to trick you into taking an action that is not in your best interest. Some scammers may be seeking an immediate financial payoff from […]
A recent PayPal phishing scam involves scammers using compromised or fraudulent Paypal business accounts to send fake invoices (from paypal.com). Scammers are attempting to get recipients to call a provided toll free phone number to dispute the charges, and during this call scammers are asking callers to download software. This software provides them with remote […]
Google recently removed a slew of malicious apps from their app store, Google Play. These apps, which have been downloaded 10 million+ times, present themselves as image editing tools, virtual keyboards, wallpaper changers, and more. They function as trojans which fulfill their stated functions, but also have malicious hidden functions, which in this case appear […]
With the Federal Student Loan Program reprieve set to expire on August 31st, the Tech Transparency Project, which is a research arm of the Non-Profit Campaign for Accountability, reviewed top Google searches related to student debt, including “student loan forgiveness” and ”cancel student debt” and found that 29 out of 242, or 12 % of […]
Beware of scams related to Amazon Prime Days, which fall on July 12th and 13th this year. Cybercriminals will be using a variety of social engineering tactics to exploit shoppers. You may receive spoofed phishing messages, SMS text messages, and phone calls during/around this time. Scammers are seeking Amazon customer login credentials to make […]
Written in the modern programming language Rust, in which intrusions may be more difficult to detect, BlackCat ransomware as service (RasS) emerged in November of 2021. RaaS refers to a cyber criminal network of ransomware access brokers, operators and affiliates. Perpetrators of BlackCat have engaged in “double extortion”, in which a ransom demand related to […]
Updates are now available for all currently supported versions of Mac OS (Monterey, Big Sur & Catalina), as well as iPhones, iPads, Apple TVs, and Apple Watches. Users are encouraged to update asap. Some of the notable fixes include: An RCE (Remote Code Execution) vulnerability which could lead to device takeover or the “jailbreaking” of […]
As a supplement to existing policies re PII (personally identifiable information), Google has expanded the types of data that users can request Google to remove from searches. Specifically, you can now request the removal of: Personal contact information, such as phone number, email or physical addresses Any additional information which may put you at risk […]
For the third time this year, Google has released a Chrome update to patch a zero-day vulnerability, which is being actively exploited. It has a high severity rating, and has been dubbed Type Confusion in V8, and is being tracked as CVE-2022-1364. The exploit occurs in the JavaScript and WebAssembly system, and can cause Chrome […]