Going Up…Again. PayPal and Docusign Scams Still on the Rise

Once again, scammers are ratcheting-up email phishing attacks using PayPal, Docusign, and you. These slimy scammers are sending more fraud-filled emails than ever before. In fact, research finds losses last year jumped to $70 million, a 274% surge from the year before. These scam emails might arrive several in a row—a ploy to get your attention. Some claim they’re from PayPal’s fraud division about your account and that’s enough to make anyone panic. It’s time to take a closer look at these scams and get tips on how to spot them. READ FULL STORY

Sneaky Fake Error Pop-Ups Are Spreading Malware Everywhere

It’s the kind of online trick that makes your heart skip a beat. A window pops up on your screen telling you there’s something wrong with your computer or that the website you’re trying to view is corrupted. But what looks like a legitimate warning might actually be a malware trap, and cybercrooks are using it to infect your devices without you realizing it. Security experts have discovered a new scam tool being used on compromised websites. READ FULL STORY

It’s a New Year, but Old Vulnerabilities Are Still Coming For Us

It may be January, but that doesn’t mean cybercriminals are taking a break. In fact, they're starting strong with CVE-2026-0628. This is a newly disclosed, critical-severity vulnerability that security researchers say could allow attackers to completely take over systems with little effort. And you are probably asking if you might be at risk. Well, if you are one of the 3 billion plus users of Google’s Chrome browser, you just might be. READ FULL STORY

Accounts Drained By Zelle Smishing Scam

From time to time, scammers come up with a new tactic using new technology, new events, or whatever they can to continue tricking us into giving up our personal or confidential information. Over the past few years and with the increasing use of texting and SMS messaging, a newer one in the bag of tricks has been coined as “smishing.” Because it’s text, it often catches people off guard and causes them to react quickly, which is exactly what you shouldn’t do. READ FULL STORY

Account Hijacking – Keep Yours From Cyberthieves

Most of us would agree there are too many ways our sensitive PII ends up in the hands of cybercriminals. One of these ways is account hijacking and few users, if any, are spared from this cyberthreat. This type of identity theft can happen without us knowing until it’s too late, but we can help prevent it. A closer look at this all-too-common cybercrime, also called account takeover, can help to make us cyber-smarter and our accounts and PII safer. READ FULL STORY

Apple Sounds Alarm to Update for 800 Million Users

Apple has just sounded the alarm to more than 800 million iPhone users worldwide, urging immediate action after discovering a critical security flaw that’s already being manipulated by hackers in real-world attacks. All iPhones capable of running recent iOS versions, including iPhone XS and later models, are vulnerable if they aren’t updated. Older devices that can’t run the newest software are also at risk unless updated to the latest supported version Apple offers. READ FULL STORY

Watch For This Credential Stealing Scam on X

A sophisticated phishing campaign is targeting X (formerly Twitter) users with fraudulent DMCA copyright infringement notices designed to steal login credentials and compromise accounts. Security experts warn that these fake messages appear convincing, but are actually elaborate traps set by cybercriminals. If you use that service, be on the lookout. While you may not use anything you think violates the DMCA, many people do when posting videos, images, or using music in their posts. However, even if you don't do that, you could still see this scam. READ FULL STORY

Simple Habits That Make You a Tougher Target for Cybercrooks

It’s already well into the new year and a fresh year usually brings fresh goals—exercise more, spend less, maybe try a new hobby. But one resolution that deserves a permanent spot on everyone’s list is tightening up your personal cybersecurity. Cyberthreats don’t take holidays, and scammers aren’t slowing down. In fact, they’re getting bolder, trickier, and faster at finding new ways to get into your accounts and steal your money or data. READ FULL STORY

FBI Warns Medusa is Trying to Snake Her Way Into Your Network

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) recently issued a warning about a ransomware-as-a-service variant that has been on the attack since December. The Medusa ransomware, a sophisticated cyber threat that has targeted over 300 victims across critical infrastructure sectors. These include, healthcare, education, and manufacturing. The group employs tactics such as phishing campaigns and exploiting unpatched software vulnerabilities to gain unauthorized access to systems. READ FULL STORY

Is Your Computer Hacked? The Clues and Tips You Should Know

Wondering if your computer might be a hacking victim is an uneasy feeling at best. The signs and symptoms are there, and you need to know what they are and what to do about them. It’s a kind of one-two punch to hackers from you and your device. But there are clues that help you decide if someone other than you has had access to your computer. Treating a hacked computer begins with preventing one in the first place. It takes a promise to use cyber-smarts daily, and bolstering your device with security software. READ FULL STORY

A Scammer Can Wreak Havoc With Your Online Banking Account Number

Most people know to protect their Social Security number, debit card PIN, or online banking password. But many don’t realize that something far more ordinary—your bank account number—can also be a goldmine for scammers. It may not seem sensitive at first glance (after all, it’s printed on every check), but in the wrong hands, it can lead to serious financial trouble. While banks often catch suspicious activity, scammers know that many people don’t check their accounts daily, giving them time to slip transactions through. READ FULL STORY

FBI Warns: Cybercrime Groups Exploit Salesforce to Steal Data

The FBI is warning businesses about two cybercrime groups, UNC6040 and UNC6395, actively targeting Salesforce instances. Using tactics like vishing calls, fake IT support scams, and stolen OAuth tokens, attackers are stealing sensitive data and threatening extortion. The criminals are exploiting both employees and third-party integrations--each using a different method for doing so. One using social engineering and the next being by using compromised OAuth tokens. READ FULL STORY