CyberTrust

Stay Vigilant

Public Service Announcement It is Tax season and with that the rise of Tax related scams. Cybercriminals are taking advantage of tax season by trying to trick you into opening an email and downloading a malicious PDF attachment. The email they send looks like a government form and includes a link to download the PDF attachment. The scammers even include helpful instructions for pasting the web page URL into your browser in case the link isn’t working. Clicking the link will redirect you to a fake webpage and initiate a file download. Malware is installed on your computer once the file downloads. Remember, cybercriminals don’t only want your money—they also want your data! And they can use this malware to steal your user credentials and other personal data.    Follow these tips to avoid falling victim to a tax scam: Make sure that your devices are running the latest software updates recommended by your IT team. Report any suspicious emails that you receive. Be skeptical of unsolicited emails from the government or other financial entities. Remember the IRS is still big on snail-mail as their primary method of communicating with you. Always double-check with the organization that sent the form if you have doubts about its authenticity. Stay Vigilant www.trustcybertrust.com

*** CyberTrust Network Please Take Note *** Cybercriminals are increasingly using Microsoft Teams as a platform for phishing attacks. Exploiting a feature that allows users from outside the organization to send messages. These messages often contain malicious files disguised as legitimate attachments, such as PDFs, which actually contain malware. - Be suspicious of unexpected messages. - Verify the authenticity of the sender - Ensure the legitimacy of attachments before clicking on them. It's important to note that this type of phishing attack is not exclusive to Microsoft Teams and could be used on any messaging platform. In response to these attacks, it is recommended to communicate and raise awareness among employees, in addition to implementing technical measures. Companies can also take preventive measures, such as changing Teams policies to block external domains or whitelist trusted domains. The rising threat of phishing attacks via Microsoft Teams underscores the importance of staying informed about such risks and taking proactive steps to mitigate them. #CyberVigilance #CyberTrust www.trustcybertrust.com

*** CyberTrust Network Please Take Note *** The IRS recently warned taxpayers and tax professionals to watch for phishing and smishing scams. Tax scams aren’t specific to the US. Around the world, cybercriminals are readying their phishing emails and text messages (smishing). Handling your taxes is often a difficult task. So, bad actors use this sensitive topic to catch your attention or manipulate your emotions. Follow the tips below to stay safe during tax season: Know what to expect from your local revenue agency. For example, in the US, the IRS typically contacts taxpayers by mail, not email or text. Always think before you click. Cyberattacks are designed to catch you off guard and trick you into clicking impulsively. Use extra caution when handling tax documents. For digital documents, use password protection. For physical documents, keep paperwork in a secure location and shred anything that is no longer needed. #CyberVigilance #CyberTrust

Many understand Bitcoin (the cryptocurrency) as a digitally native and incorruptible medium of value exchange. But few understand Bitcoin (the network) for the promise it brings to securing data and communications. Jason Lowery does a brilliant job of explaining this in his short TEDx video (link below). The Bitcoin network is a peer-to-peer network of nodes which implement the Bitcoin protocol. The protocol itself implements a highly available, public, and decentralized ledger. The nodes verify that each update to the ledger follows the rules of the Bitcoin protocol. China and Russia are leading the charge in this space... The United States unfortunately is playing catch up on a technology with significant implications to our national security. #Blockchain #Cybersecurity #GameTheory #CyberTrust https://lnkd.in/gSfqjzBV

Earlier this month, the United States Federal Bureau of Investigation (FBI) released an official advisory about the rise of callback phishing attacks. Callback phishing is when a phishing email directs you to call a number instead of clicking on a link. Typically, if you call the number in a callback phishing email, the cybercriminal will try to trick you into providing sensitive information. The FBI’s recent advisory outlined a new and more dangerous tactic. In this scam, cybercriminals send an email claiming that you have a pending charge on one of your accounts. If you call the number provided, the cybercriminal will guide you on how to connect with them through a legitimate system management tool. System management tools are often used by IT departments to remotely connect and control your device. Once the legitimate software has been installed, cybercriminals can use it to sneak ransomware onto your device. With ransomware installed, sensitive information can be stolen and used to extort you or your organization. Stay safe from similar scams by following the tips below: Be suspicious of emails that contain a sense of urgency. Cybercriminals use a sense of urgency as an attempt to catch you off guard and get you to click or act impulsively. Consider the context, timing, grammar, and other details of the email or call. For example, does your bank usually ask you to call in? Avoid calling phone numbers provided in emails. Instead, navigate to an official website to find the best contact number.

CyberTrust wishes you and your loved ones a great holiday week ahead and a Happy Thanksgiving. Fun Fact - Shutting down for a few days to enjoy quality time with family is a cybersecurity best practice :) #Vistrada #CyberTrust

Events, including cyber threats, are not random occurrences but are often the result of underlying factors and vulnerabilities that can be identified and addressed proactively.   Cybersecurity incidents are not merely chance events but are often the culmination of existing vulnerabilities, inadequate defenses, or oversight in security measures.   Therefore, organizations must approach cybersecurity with a proactive mindset, recognizing that the security of their digital assets and sensitive information requires deliberate preparation and vigilance. Proactive Risk Management: Acknowledge that cybersecurity incidents are not random, but often result from identifiable risks and vulnerabilities. Therefore, organizations should prioritize proactive risk management to identify and mitigate potential threats before they materialize. Preparedness and Resilience: Emphasize the importance of being prepared for cybersecurity events by implementing robust security measures, incident response plans, and resilience-building strategies to effectively navigate and mitigate the impact of cyber incidents. Continuous Improvement: Recognize that cybersecurity readiness is an ongoing process that requires continuous improvement and adaptation to evolving threats. Organizations should strive to enhance their cybersecurity posture through regular assessments, updates, and training. In a world where cybersecurity threats are increasingly prevalent, the wisdom of Epictetus holds significant relevance. Learn more at https://lnkd.in/eJmnQ7Z5 #StayOneStepAhead #Vistrada #CyberTrust

Great slide on the areas of disruption that blockchain technologies are impacting. Although one area not on here (that should most certainly be) is cybersecurity. Blockchain advances in identity management, data tokenization and other areas will radically transform digital security. The Bitcoin network is the most secure network that has ever existed at 462MM TH/s. Imagine when we get to harness that power across use cases outside of just store of value (hint: it’s happening as we speak) #Blockchain #Cybersecurity

Last day to take advantage of the Cybersecurity Awareness Month discount and 33% off tomorrow's price. Do not let your Cyber Luck run out! Get your copy today and find out where your vulnerabilities are.