Users Get Tricked Into Falsely Updating Google Services

The TrickMo Android banking trojan has re-emerged in a new form, disguised as a fake Google Chrome app for Android. Once installed, this malicious app prompts users to update Google Play Services, tricking them into downloading TrickMo under the guise of "Google Services." By doing so, it gains access to critical permissions, including those for the device's accessibility settings, which it then exploits to perform various malicious activities. READ FULL STORY

Is Your Wrist Wear A Security Risk?

Your smartwatch tracks your steps, displays your messages, and can even unlock your phone. It’s a tiny device with a lot of power. But all that convenience also means your watch could hold more personal information than you realize. From health data to email notifications, smartwatches store plenty of details that hackers would love to get their hands on. The good news is a few simple settings can help keep your smartwatch locked down so your personal data stays on your wrist and out of the wrong hands. READ FULL STORY

Your Homework Was Hacked--Canvas Breach Gives Students an Excuse to Avoid Studying

Students, faculty, and administrators across the country got an unexpected interruption to finals week after hackers linked to the cybercrime group ShinyHunters allegedly breached Instructure, the company behind the Canvas learning platform used by thousands of schools worldwide. While passwords and financial information do not currently appear to have been stolen, cybersecurity experts warn the data could still fuel phishing attacks, scams, impersonation attempts, and long-term identity risks for students and faculty alike. If you use or have used Canvas, now is the time to change passwords, watch for suspicious emails, and treat every “urgent” school message like it arrived wrapped in digital caution tape. READ FULL STORY

Senior Safety Online – AARP’s Top Tips For Data Security

It’s widely known that seniors are a choice target for cybercriminals. In fact, they are the second most target age group for cybersecurity crimes. Thanks to a publication by AARP “My Online Privacy for Seniors,” this e-book offers ways this vulnerable population can be smarter about their online security. It offers basic steps and strategies for keeping PII secure. Below are some of the AARP’s top online tips for seniors, so share them with an older friend or loved one – they’ll thank you for it. READ FULL STORY

When What You See Is Not What You Get

Although it may sound strange, bad actors are exploiting what we see – or what we think we see. Always looking for new ways to gain our confidence, cybercriminals are counting on us being human to make this con work. Trust, fear, and concern are some of the emotions being exploited, which is nothing new for hackers. But what is new is taking advantage of our assumption that when we see a trusted website, it’s worthy of our trust…Well, maybe not so much anymore. READ FULL STORY

One Billion Records Exposed When MongoDB Database Found Unsecured

A newly discovered data leak tied to identity verification company IDMerit has exposed an enormous amount of personal information online. Security researchers say the database contained more than a billion sensitive records, including names, addresses, phone numbers, and national identification details. While the database has since been secured, the incident shows how a single misconfigured system can put massive amounts of personal data at risk. If your information was included, scammers and identity thieves could use it for fraud, phishing, or account takeovers. Taking a few steps now can help protect your personal data before criminals try to exploit it. READ FULL STORY

Home Title Theft May Make Your Home No Longer Your Home

Imagine waking up to learn your home is no longer your home. No one broke in and held you hostage to get it, no one served you paperwork to get out, but suddenly you discover that the name on the deed to your property is no longer yours and no actual legal transfer took place. No broken windows. No moving trucks in the driveway. However, paperwork appears that says it’s no longer yours. But your home is no longer your home. What may have happened is deed fraud. READ FULL STORY

CAPTCHA Used as Bait For Growing Number Of Email Scams

Most of us are familiar with the funky CAPTCHA verification window that occasionally pops-up when signing onto a website. CAPTCHA systems lend a level of credibility to those of us asked to verify online that we’re human and not a bot. Seeing it makes us feel better about the site being more secure than others. After all, only a 100% legitimate website or service would dare use CAPTCHA, right? Wrong. This now Google-owned service has become a favorite bait for scammers who want you to believe they’re legitimate, and it’s working big-time. READ FULL STORY

Account Takeover Fraud is on the Rise

If you’re not able to login to an account, you might be victim to an account takeover (ATO). According to Spy Cloud, 22% of adults in the U.S. have experienced an ATO. And globally in 2023, ATOs grew by 155%. ATO’s target individuals and organizations. But bringing ATOs home, Spy Cloud finds they affected more than 24 million households. Financial theft is the undisputed goal of an ATO. With this crime on the rise, it’s a smart idea to learn more about them. READ FULL STORY

The Red Hot Scams of 2026 are Heating Up

While we all tend to look forward to retirement, scammers never actually get around to it. In fact, they are entering 2026 with sharper tricks and colder hearts. AARP’s latest warning highlights several “red-hot” scams already spreading across the internet and phone lines, from fake job offers to terrifying “digital arrest” threats. Knowing how these schemes work could be the difference between keeping your money safe and watching it vanish. READ FULL STORY

ClickFix Attacks Go Cross-Platform

Think ClickFix attacks are just a Windows problem? Think again. Microsoft warns that cybercriminals are now targeting macOS users with ClickFix schemes, malvertising, and fake DMG installers. The goal is not new: To steal passwords, hijack sessions, raid crypto wallets, and launch ransomware. According to Microsoft’s latest findings, attackers are combining ClickFix social engineering tricks with malvertising campaigns that push malicious disk image files. Here’s what’s happening and how to stay safe before your device becomes digital loot. READ FULL STORY

Financial Services Tops 2025 Breach List as Cyberattacks Continue to Climb

Probably no surprise to anyone, cybercrime surged again in 2025, with financial services becoming the most-breached industry. Experts warn that AI-driven attacks and third-party vulnerabilities are accelerating risks for consumers. While attacks against financial services organizations are not new in the least, the speed and scale of attacks against them are accelerating dramatically. What might have changed slowly over several years in the past can now shift in just months. Learn what’s driving the trend and how to protect your financial accounts. READ FULL STORY