Security Hints + Tips — Pretexting
Pretexting is when the bad guys create a false scenario using a made-up identity or pose as someone you know. They can even pose as employees of bank or credit card companies to manipulate you into divulging personal or sensitive information. How it Works: Common Tactics of InfluenceThe bad guys will try to persuade you into giving them sensitive information. Oftentimes, the information that they need is not specific to your organization. Below are examples of two common tactics used to influence victims in pretexting scenarios: Pretexting with AuthorityYou receive a call at work from someone demanding immediate assistance. They…
Security Hints + Tips
Don’t Be Fooled by Workspace Tools Many organizations use platforms such as Microsoft Teams, Google Drive, or Zoom to stay connected. Unfortunately, these trusted communication tools can lead to a false sense of security. Just like with traditional email, bad guys can use these platforms to launch a cyber attack. Below are three examples of how cybercriminals use these platforms for phishing—and what you can do to keep your organization safe Lurking Recently, a cybercriminal gained access to an organization’s Microsoft Teams channel, which is similar to a group message or a chat room. The scammer lurked in the channel…
Tech Tip: How to Prevent “Zoom-Bombing”
Zoom-bombing is the term for when individuals “gate-crash” Zoom meetings. These uninvited guests share their screens to bombard real attendees with disturbing pornographic and/or violent imagery. Most of these are perpetrated via publicly available Zoom links; however, not all depending on your settings. Here are ways to protect you and your guests from falling victim. Read more about what you can do to protect yourself here: https://security.berkeley.edu/resources/cybersecurity-and-covid-19/settings-preventing-zoom-bombing Tips courtesy of Zoom and UC Berkeley
The holiday season is upon us for family, friends, and … phishing?
This festive time of year is when many cyber thieves try to trick you with holiday-themed email scams. These phishing scams are professional-looking emails that attempt to steal your personal information (such as login password, bank account, or credit card). The emails generally look authentic and appear to come from a valid organization (like WVNET or your bank). They may even include a “helpful” link to a website for your convenience. Some phishing examples from previous holiday seasons include: From “Amazon”: Enter your username and password to receive a “free” $100 Amazon gift card. Unfortunately, the webpage captures your login credentials and installs harmful software…