Identity theft occurs when someone uses your personally identifying information, like your name, Social Security number, credit or debit card number, without your permission, to commit fraud or other crimes. Identity theft can happen to anyone, but there are steps you can take to minimize your risk of becoming a victim.
Scam of the Week - The information provided below belongs to and is provided by KnowBe4 and is intended for informational purposes only.
November 28, 2018 - Stop Reusing Old Passwords
If you're using the same password for multiple accounts, you're making yourself vulnerable! If the bad guys have your credentials for one site, they can use tools to automatically test those credentials on other sites. So, if you are using the same password for multiple accounts, change that password immediately!
Here are some tips for creating new passwords:
- Create complex passwords that are at least eight characters with a combination of upper and lowercase letters, numbers, and symbols.
- Use passphrases as a password such as a phrase or a sentence. Make sure it is unique but make it something you can remember.
- Use a password generator, such as LastPass and 1Password to generate your passwords for you.
- Don’t use variations of your old passwords.
November 21, 2018 - Black Friday & Cyber Monday Alert
It may be the start of the Holiday Season but don’t think that means the bad guys are on vacation! Black Friday and Cyber Monday are the busiest online shopping days and the bad guys are out to get rich with your money. After all, ‘tis the season for scams and phishing.
So how do I stay safe this holiday season?
- Always type in the address or use bookmarks to navigate to your favorite shopping sites.
- Never click on links in emails with special offers.
- Watch out for alerts via email or texts from FedEx, UPS, or the US mail asking for personal information.
- Don’t download fake mobile apps that promise big savings.
- Be wary of online discount coupons. Remember to only use credit cards online, never debit cards.
If you think you might have been scammed, stay calm and call your credit card company immediately. Ask them to cancel your card and mail you a new one.
November 14, 2018 - Fortnite and League of Legends Phishing Attacks
Game over! The bad guys are now targeting Fortnite and League Of Legends players. They are offering “free” v-bucks, a digital currency purchased with real money to buy virtual goods in Fortnite, to phish users and learn their credentials.
Instead of getting an exciting new skin for their favorite Fortnite character, they could be giving away their identity to the bad guys. As for League of Legends, the bad guys are using fake landing sites to steal passwords which are often reused. They can then use this information to gain access to other accounts the user may have, including Fortnite.
Please make sure your kids and gamer friends alike are aware that there are thousands of scam sites trying to rope them in with social engineering tactics. The best way to avoid scams is to only purchase v-bucks directly from the "Fortnite" store, remember not use the same password for multiple accounts, and never share your account information online. Teach your kids to Think Before They Click!
November 7, 2018 - Cryptocurrency on Twitter
The bad guys are finding new ways to scam you on social media using your favorite celebrities. By using Twitter’s promoted tweet functionality, the bad guys are trying to trick you into thinking celebrities are “giving away” e-currency, such as bitcoin. The names of well-known celebrities will always show a blue check mark next to their name on Twitter, so if you don’t see the verified mark next to their name, don’t click! Even if you do see the verified mark, don’t assume items posted on social media are safe or secure. This type of scam has also been seen on Facebook and other social media platforms. If it's too good to be true.... Think Before You Click!
October 31, 2018 - Beware Look-Alike Phishing Sites
The bad guys are changing their tactics and you need to be aware! They are now creating phishing sites that resemble the sign-in pages of popular companies.
They will try anything to get you to authenticate on their fake site. Some phishing sites will even try to fool you by appearing in your:
- Search results
- Social media
- Chat and IM applications
- Rogue browser extensions
- Web freeware
- “Trusted” apps downloaded from app store
Don’t fall for this trick - the bad guys want you to give up your login credentials so it can be used as part of a larger attack! Make sure to always check a website for any signs that it may not be legitimate, or type in the company’s web address yourself.
October 24, 2018 - Extortion With a New Twist
The bad guys are becoming even more deceptive with extortion scams. Now, they send you an email that appears to be coming from your own email and claim to have infected your computer with a backdoor. A backdoor allows the bad guys to take control of your computer.
Next, they accuse you of watching mature content and claim they recorded you. Here comes the kicker! Unless you pay them bitcoin, they will threaten to use your own computer to send embarrassing content to all of your contacts.
Don’t fall victim to the bad guys! If you receive an email that claims to have compromising video of you viewing sensitive material, do not answer or send money. Instead, delete the email or follow the reporting procedures put in place by your organization.