Business Email Spoofing On The Rise

While the headlines are focused on ransomware attacks, spoofed emails are getting sneakier and more successful. Bad actors are always finding new ways to hack their way into businesses, and spoofing email addresses are proven way of doing just that. During the first 100 days of the coronavirus outbreak, spoofing attacks increased by 30%. This type of phishing email can sneak past antivirus security and lead to data theft, fraudulent wire transfers, ransomware, BEC (business email compromise), and more. READ FULL STORY

ClickFix Attacks Go Cross-Platform

Think ClickFix attacks are just a Windows problem? Think again. Microsoft warns that cybercriminals are now targeting macOS users with ClickFix schemes, malvertising, and fake DMG installers. The goal is not new: To steal passwords, hijack sessions, raid crypto wallets, and launch ransomware. According to Microsoft’s latest findings, attackers are combining ClickFix social engineering tricks with malvertising campaigns that push malicious disk image files. Here’s what’s happening and how to stay safe before your device becomes digital loot. READ FULL STORY

Financial Services Tops 2025 Breach List as Cyberattacks Continue to Climb

Probably no surprise to anyone, cybercrime surged again in 2025, with financial services becoming the most-breached industry. Experts warn that AI-driven attacks and third-party vulnerabilities are accelerating risks for consumers. While attacks against financial services organizations are not new in the least, the speed and scale of attacks against them are accelerating dramatically. What might have changed slowly over several years in the past can now shift in just months. Learn what’s driving the trend and how to protect your financial accounts. READ FULL STORY

Has Your Account Been Compromised? Five Cyber Smart Tips Everyone Can Use

The transition to living life through our devices has become very real for scores of people and businesses. By now, the coronavirus has changed our lives in ways we never expected. This transition includes doing most things from home. Unfortunately, adapting to online life also gives bad actor’s a cornucopia of targets to exploit. There are proactive steps to take when you suspect an account may be compromised, including ways to help keep it from happening to begin with. READ FULL STORY

Know The Signs Of A Social Security Scam

Scammers frequently change their approach with new tactics and messages to trick people. We encourage you to stay up to date on the latest news and advisories by following SSA OIG on LinkedIn, Twitter, and Facebook or subscribing to receive email alerts. READ FULL STORY

Firewall vs. Antivirus: What’s the Difference?

In today's interconnected world, cybersecurity is more important than ever. Businesses of all sizes face the threat of cyberattacks, and the stakes are high. A successful attack can result in the loss of sensitive data, financial damage, and reputational damage. Fortunately, there are a variety of cybersecurity solutions available to help businesses protect themselves. By investing in these products and services, businesses can defend themselves against a wide range of threats, such as viruses, malware, and SQL injections. READ FULL STORY

Your Bank Is Calling. Or Is It?

A phone call that looks like it’s coming from your financial institution could be the opening move in a fast-moving chess game the FBI is warning about. Using spoofed numbers and convincing scripts, criminals create a sense of urgency, claiming your account is under attack. The next move includes a carefully guided attempt to extract passwords, verification codes, or even push you to move your own money straight into their hands. Knowing when to hang up could be the difference between staying secure and watching your account drained in a flash. READ FULL STORY

Keeping Your Bank Account And Credit Cyber-Smart

Financial institutions and hacking go hand-in-hand. Hacking banks and their account holders is the most direct cash infusion a hacker can get…and they know it. According to Kaspersky Lab, attacks on ATMs alone hit an all-time high in 2017 with malware-as-a-service (MAAS) opportunities. With this service, even hacking “hacks” who have no cybercrime experience can watch an instructional “how to” video on how to target an ATM successfully. Guarding our finances with common sense protection is something we all need to do. READ FULL STORY

An Overview Of Several Types Of Phishing Scams

In this day and age, anyone who has an email address or even a telephone has heard the term “phishing.” It’s the most prevalent form of social engineering in existence. The latest Verizon Data Breach Investigations report found that phishing represented 98% of the social attacks for the reporting period. Of the 1,450 incidents it studied, 381 resulted in confirmed data disclosure and 59% of them were financially motivated. While 78% of the people studied never fell for phishing, 4% did. It’s that small percentage that counts. It only takes a single person to cause an organization to be compromised. READ FULL STORY

Should I, Could I Freeze My Credit Report?

Having your private information or identity stolen is no picnic. It takes quite a long time to make it right, so one of the best ways to help ensure that neither happens in the first place is to protect it as much as you can. In light of the recent Capital One data breach, many may be considering putting a freeze on their credit reports and that is a great idea. However, it's a good idea to be sure to know what that means before taking that action. READ FULL STORY

New and Improved Brushing Scam Warning

A package shows up on your doorstep that you never ordered. Inside, nothing remarkable, just a cheap item and a QR code that you didn’t order. Curiosity does the rest. According to a new FBI warning, that innocent-looking square could be your entry point into a scam designed to siphon off personal and financial data. This latest twist on “brushing” scams blends old tactics with modern convenience, turning a quick scan into a potentially costly mistake. READ FULL STORY

Scammers DropBox Into Your InBox

A newly uncovered phishing campaign is slipping past defenses using a clever multi-stage strategy. Cybercriminals are refining their craft. By exploiting trusted platforms, harmless file formats, and layered redirects, attackers are dodging traditional email scanners. The result? Victims land on convincing fake login pages without ever seeing a clear red flag. In today’s phishing landscape, the danger is not always obvious. Here’s how it works and how to avoid the trap. READ FULL STORY