Cyber Threat Alert

The nation’s highest Cybersecurity authority issued a high level alert for any companies who are deemed critical to the US infrastructure, see the following link.

https://www.cisa.gov/uscert/ncas/alerts/aa22-011a

The one constant threat is that of Email Malware.  Phishing attacks that get access to your environment and steal credentials. Remain incredibly diligent in checking your emails for attachments, and spoofed URLS before opening or forwarding.

How to Recognize a Fake URL

Scammers will sometimes use fake versions of real businesses’ Web addresses to trick you into revealing your personal information. Look for oddities in any address that appears in an emailed link, like a misspelled company name, or extra characters at the end of the domain name. When in doubt, don’t click the link and get in touch directly with the company in question.

Look Before You Click

Scammers will often send “phishing” emails masquerading as banks and other financial companies, e-commerce sites and other institutions with which you do business.

In those emails, they’ll include sign-in links pretending to be to the institution you trust, but they’ll be to the scammers own website. When you try to log in or provide other sensitive information, they’ll record your information and later use it to impersonate you.

Before you click any link in an email, you should always look at the link’s URL to make sure that it goes to the website you expect.

On the email programs for iPhone and Android smartphones and tablets, you can do this by holding your finger down until a menu pops up, showing the URL and asking whether you want to open the link. On most browsers for Windows or Mac, you can mouse over the link to see the URL.

Check for Subtle Tricks

When you’re looking at the URL, look carefully for any subtle misspellings in the domain name. Scammers will use slightly misspelled variations of well-known sites to trick you into simply skimming the URL and clicking. A fraudulent email might link to “http://www.mybonk.com” instead of “http://www.mybank.com,” for example.

Questions

If you have any questions, please give me a call 206-730-1111