Account Takeover Fraud is on the Rise

If you’re not able to login to an account, you might be victim to an account takeover (ATO). According to Spy Cloud, 22% of adults in the U.S. have experienced an ATO. And globally in 2023, ATOs grew by 155%. ATO’s target individuals and organizations. But bringing ATOs home, Spy Cloud finds they affected more than 24 million households. Financial theft is the undisputed goal of an ATO. With this crime on the rise, it’s a smart idea to learn more about them. READ FULL STORY

The 10 Most Common 4-Digit PINs: Is Yours One of Them?

By now, it’s common knowledge that anything to do with your online security that’s easy-to-guess presents personal security risks. One of those risks involves using a 4-digit PIN code for your smartphone, additional devices, ATM accounts, and payment cards. Commonly used PINs make it easy for you to remember but they also make it easy for hackers to guess. Below are 10 of the most common 4-digit PIN codes cybercriminals try first, so take a look and see if yours is on the list. READ FULL STORY

Know The Signs Of A Social Security Scam

Scammers frequently change their approach with new tactics and messages to trick people. We encourage you to stay up to date on the latest news and advisories by following SSA OIG on LinkedIn, Twitter, and Facebook or subscribing to receive email alerts. READ FULL STORY

Firewall vs. Antivirus: What’s the Difference?

In today's interconnected world, cybersecurity is more important than ever. Businesses of all sizes face the threat of cyberattacks, and the stakes are high. A successful attack can result in the loss of sensitive data, financial damage, and reputational damage. Fortunately, there are a variety of cybersecurity solutions available to help businesses protect themselves. By investing in these products and services, businesses can defend themselves against a wide range of threats, such as viruses, malware, and SQL injections. READ FULL STORY

Keeping Your Mobile Device Apps Virus Free

It’s no secret that cybercriminals take advantage of anxiety-filled times and the current coronavirus pandemic (COVID-19) is most certainly one of those moments. The latest cybersecurity news reports that Android smartphones are being targeted with apps claiming to have up-to-date data on COVID-19. These infected apps promise the latest updates, but to unsuspecting users who download them, they also promise malware will surely be installed on your mobile device. READ FULL STORY

The PayPal No-Phish Phishing Scam

It’s not your typical email phishing scam, but then cybercriminals are always looking for new ways to swindle us. And we’ve seen many warnings about PayPal scams lately. Yet another one, this PayPal “No-Phish” email phishing attack is rampant. Scammers are tricking PayPal users into handing over their accounts thanks to this highly sophisticated phishing scheme. The way this no-phish phish is constructed, it also gets beyond the typical phishing detection software. READ FULL STORY

Shell Out Some Cash For Your Free Trip To The Beach

It’s summer! And from the temperatures most of the U.S. is experiencing, that’s not a surprise to anyone. With summer comes wonderful, relaxing, exciting vacations for so many of us. And wouldn’t it make your summer even better if you won a 5-day, 4-night vacation in the Bahamas? Well, it seems that you certainly have an opportunity to win it, but is it too good to be true? Let’s take a look at one in particular that has gotten a lot of traction in the forums on the travel website, TripAdvisor. READ FULL STORY

New and Improved Brushing Scam Warning

A package shows up on your doorstep that you never ordered. Inside, nothing remarkable, just a cheap item and a QR code that you didn’t order. Curiosity does the rest. According to a new FBI warning, that innocent-looking square could be your entry point into a scam designed to siphon off personal and financial data. This latest twist on “brushing” scams blends old tactics with modern convenience, turning a quick scan into a potentially costly mistake. READ FULL STORY

Scammers DropBox Into Your InBox

A newly uncovered phishing campaign is slipping past defenses using a clever multi-stage strategy. Cybercriminals are refining their craft. By exploiting trusted platforms, harmless file formats, and layered redirects, attackers are dodging traditional email scanners. The result? Victims land on convincing fake login pages without ever seeing a clear red flag. In today’s phishing landscape, the danger is not always obvious. Here’s how it works and how to avoid the trap. READ FULL STORY

U.S. Businesses Warned to Brace for Iran-Linked Attacks

A conflict thousands of miles away could still create very real cybersecurity problems here at home. U.S. officials are warning that Iran-aligned cyber actors may be targeting American businesses, critical infrastructure, healthcare systems, and government networks. Some threat groups are believed to already be scanning for weaknesses and, in some cases, may have quietly planted themselves inside vulnerable systems. For organizations with weak defenses, this is not the time to hope for the best. It is the time to lock things down. READ FULL STORY

Experts Warn: Malvertising on the Rise

The name is short for malicious advertising, but malvertising’s long record of infecting devices is growing fast. Last fall, Malwarebytes found month-to-month, a 42% increase in malvertising in the U.S. It’s a strong message that users need to be hyper-aware of these aggressive and hazardous online ads. Cybercriminals use malvertising to download malicious code onto a device. Once a device is infected, any number of cyberattacks can happen. READ FULL STORY

What's Behind Man-In-The-Middle Attacks and How to Avoid Them

It’s not the game many of us played as kids, but it is a distorted take on the same idea. Man-in-the-middle (MitM) cyberattacks do put someone in the middle of two sides, but that someone is a cybercriminal. And those on either side are clueless victims. In reality, MitM attacks are anything but a game. A typical MitM attack can disrupt operations, intercept usernames and passwords, emails, banking, and other financial details. Read on about how MitM attacks play out, including ways to avoid being caught up in these crimes. READ FULL STORY