Every year about this time, cyber-criminal groups start to ramp up for the annual income tax fraud season. As we enter tax season, its good to remember the following tips to ensure your tax refund is not claimed by a scam artist.
There is a new tool available to all of us this year. Anyone can, and should, for ...
Continue Reading →
A quick Saturday digest of cybersecurity news articles from other sources.While reviewing spam traps, a particular campaign piqued Trustwave’s interest primarily because the attachment to the email did not coincide with the theme of the email body. The email, with the Subject “GOOD LOAN OFFER!!”, at ...
Catch of the Day: IONOS Credential Stealing Phish
Chef’s Special: IONOS Password Update Phish
Examples of clever phish that made it past my spam filters and into my Inbox, or from clients, or reliable sources on the Internet.
I would be delighted to accept suspicious phishing examples from you. Please forward your email to phish@wyzguys.com.
My intention is to provide ...
Continue Reading →
Password theft – One of the easiest exploits for a cyber-criminal may be the one of the worst for the victim. The recent SolarWinds disaster (yes it is a disaster, not just hyperbola) began when a Russian cyber-ops group discovered the password to the SolarWinds update server was “protected” by the password SolarWinds123. This password is easily guessable and a terrible choice for a critical system such as an update ...
A quick Saturday digest of cybersecurity news articles from other sources.While you always need to be wary of scammers and the methods they use, you may want to approach situations with an extra level of scrutiny during the ongoing COVID-19 (coronavirus) crisis. Fraudsters know people are more vulnerable to scams when they’re desperate, ...
Continue Reading →Catch of the Day: LinkedIn Phishing Sim
Chef’s Special: Zoom Phish
Examples of clever phish that made it past my spam filters and into my Inbox, or from clients, or reliable sources on the Internet.
I would be delighted to accept suspicious phishing examples from you. Please forward your email to phish@wyzguys.com.
My intention is to provide a warning, examples ...
Continue Reading →A quick Saturday digest of cybersecurity news articles from other sources.Original release date: November 24, 2020
With more commerce occurring online this year, and with the holiday season upon us, the Cybersecurity and Infrastructure Security Agency (CISA) reminds shoppers to remain vigilant. Be especially cautious of fraudulent sites spoofing reputable businesses, unsolicited emails purporting to be from charities, and unencrypted financial transactions.
CISA encourages ...
Continue Reading →Catch of the Day: Betmaster’s Phish
Chef’s Special: Facebook Lottery Scam
Examples of clever phish that made it past my spam filters and into my Inbox, or from clients, or reliable sources on the Internet.
I would be delighted to accept suspicious phishing examples from you. Please forward your email to phish@wyzguys.com.
My intention is to provide a warning, examples ...
Continue Reading →Catch of the Day: Roundcube Version Upgrade Phish
Chef’s Special: IONOS Blocked Email Phish
Examples of clever phish that made it past my spam filters and into my Inbox, or from clients, or reliable sources on the Internet.
I would be delighted to accept suspicious phishing examples from you. Please forward your email to phish@wyzguys.com.
My intention is to provide a warning, ...
Continue Reading →
What if you could eliminate 95% of cybersecurity exploits by doing one thing better? Would you do it? Social Engineering in its many forms accounts for 95% to 99% of common exploits that cybercriminals use to gain initial access to your information assets. There are two simple security controls that you can put in place that would virtually eliminate the threats caused by social engineering.
Social engineering is the use of ...
Continue Reading →