Alerts

Watch for New Hybrid Attack Involving CEO Fraud

The bad guys are getting creative with a new hybrid attack that involves CEO Fraud and gift card scams.

There is a massive campaign underway where they impersonate an executive and urgently ask for gift cards to be bought for customers. Once the gift cards are physically bought from a store, the “boss” asks you to send them the redeem code/number via email or text.

Never comply with a request like this - it’s a scam! Always confirm a request with your boss over a live phone call or in person to make sure it’s not a scam. Sometimes it's OK to say "no" to the boss!

 

KnowBe4 Scam of the Week: Look Out for Fake Phishing Websites

Be extra cautious! The bad guys are using foreign characters to create phishing websites that spoof popular brands (Example: micròsoft.com instead of microsoft.com). Then, they use these websites to trick you into providing your personal information.

The latest phishing website scam is a contest for you to win “free tickets” from well-known airlines. They ask you a series of seemingly innocent questions and then tell you to share the free offer with 15 of your contacts before being directed to the URL where you can access the free tickets.

Beware of Friend Requests on Social Media

The bad guys aren’t limiting their scams to just your email account - they’re attacking you via social media, too! They create a fake profile and request to be your friend, or send you a message. They come off as wanting to be friends (in some cases, maybe even more), but what they really want is your money or your friend list. With access to your friend list, the bad guys will have even more people to target.

KnowBe4 Scam of the Week: SharePoint Phishing Attack Impacts 10% of Office 365 Users

KnowBe4 Scam of the Week: SharePoint Phishing Attack Impacts 10% of Office 365 Users

Be on alert! The bad guys have a new way of stealing your login credentials. They target you by sending you an invite via email to open a SharePoint document. The link takes you to an actual SharePoint page where you will see a OneDrive prompt. The prompt will have an “Access Document” link in it - don’t click this link!

This link is malicious and will take you to a fake Office 365 login screen. Any credentials you enter here will be sent to the bad guys. Don't be tricked!

KnowBe4 Scam of the Week: Your Package Is on Its Way, but Not the One You Expected

The bad guys are sending you a package, but don’t fall for it - it’s a trap! What? That’s right, the bad guys have a new scam and it involves tracking your shipments.

Suppose you’re expecting a package from a well-known delivery company, and you receive a seemingly legitimate email from the company offering a way for you to track your delivery by clicking a link. You click on the link to check on your delivery, but instead, you unleash an unwanted package - an executable file that compromises your computer.

Watch out for card skimming at the gas pump

With the summer travel season in high gear, the FTC is warning drivers about skimming scams at the pump.

Skimmers are illegal card readers attached to payment terminals.  These card readers grab data off a credit or debit card’s magnetic stripe without your knowledge. Criminals sell the stolen data or use it to buy things online. You won’t know your information has been stolen until you get your statement or an overdraft notice.

Here are a few tips to help you avoid a skimmer when you gas up:

KnowBe4 Scam of the Week: Beware of Free Gift Card Phishing Scams

The bad guys know you like free stuff, but this time it’s going to cost you! They lure you to a fake website for a “free” gift card in exchange for seemingly harmless information. Once on the site, you are asked a series of questions. If you make it through all of the questions, you’ll earn a unique code to redeem a gift card - this code and gift card are worthless!

The bad guys are tricking you into offering up your personal information. Don’t be the victim!

Warn your friends about tech support scams

Tech support scams, which get people to pay for fake computer help or steal their personal information, are convincing. You might already know the signs of a tech support scam, but do your friends and family? Here’s what they need to know now:

  • Companies like Microsoft don’t call and ask for access to your computer. If you get a call like that, it’s a scam.

KnowBe4 Security Tips - Piggybacking - Courtesy that could cost you

To kids, piggybacking is when someone jumps on your back and you carry them around for a while. In the business world, piggybacking is when you let someone that you do not know enter a door that you just opened.
A lot of organizations rely on biometrics, key cards, or even regular keys to open locked doors. These could be doors to get into the building, parking garage, a particular office.
Piggybacking is when someone you do not know, waits for you to open a locked door, and enters in behind you.

Pages