Avoid posting personal details like your full address, phone number, or birth date online. These can be used for identity theft or social engineering attacks. Even seemingly harmless quizzes can collect sensitive information. Be mindful of what you share, even in private messages. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support

A new phishing campaign is targeting Google Ads users by tricking them into entering their login details on fraudulent websites. The attackers use Google Ads to display fake ads that look like legitimate Google login pages. When users click on these ads, they are redirected to fake sites designed to steal their login credentials and two-factor authentication codes.

Cybersecurity experts from Malwarebytes revealed that the goal of the attack is to hijack Google Ads accounts, using stolen credentials to push fake ads and further spread the scam. The fraudsters cleverly exploit a loophole in Google’s system, allowing them to display misleading URLs while hiding the true destination of the ads. This makes it harder for users and even Google to spot the fraud until it’s too late.

The campaign is believed to be run by a group of Portuguese-speaking attackers, likely based in Brazil, and has been active since November 2024. As these attacks grow more sophisticated,...

Always update the default settings on apps, services, and devices to more secure options. Default settings are often set for convenience, not security, so customize them to better protect your personal information and privacy. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Vishing involves attackers using phone calls to trick individuals into revealing personal or financial information, often by impersonating legitimate organizations.

Simple Tips to Avoid Vishing:

• Verify the Caller: Ask for details, then call back using a trusted number.
• Guard Personal Info: Never share sensitive data with unsolicited callers.
• Watch for Red Flags: Be cautious of high-pressure calls.
• Report Suspicious Calls: Inform security or relevant authorities.
• Trust Your Instincts: Hang up if something feels off.

Follow these steps to reduce your risk of vishing attacks!

To protect your personal data in case your device is lost or stolen, always enable remote wipe and lock features on your smartphone, tablet, or laptop. These tools allow you to remotely lock the device, preventing unauthorized access, or erase all your sensitive data to ensure it can't be recovered. Regularly back up your data to the cloud or external storage to ensure you don't lose important files if you ever need to wipe your device.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support

Never allow others to use your devices without supervision, especially when logged into sensitive accounts like email, work services, or banking apps. Always log out of important accounts and lock your device when you're not using it to prevent unauthorized access. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.

Avoid downloading anything from untrusted websites, as files, images, or software may contain malicious software or spyware. Always use reputable sources and verify them before downloading. Employ security tools to scan files before opening them. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Attackers often target old browsers and risky extensions. To stay safe, make sure your browser is always up to date and remove any extensions you don’t need or trust. This helps protect you from online threats and keeps your browser secure. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Apple has agreed to pay $95 million to settle a class action lawsuit that accused the company of invading users' privacy through its voice-activated assistant, Siri.

This settlement affects U.S.-based individuals who either currently own or have owned a device with Siri (such as an iPhone, iPad, Apple Watch, MacBook, iMac, HomePod, iPod touch, or Apple TV) and whose private voice conversations were unintentionally captured by Siri and shared with third parties. This could have happened between September 17, 2014, and December 31, 2024.

People who qualify can file claims for up to five devices they own or owned and can get $20 for each device where they believe Siri was accidentally activated during a private conversation.

The lawsuit came after a 2019 report from The Guardian, which revealed that Apple hired third-party contractors to listen to users' voice recordings in order to improve Siri, sometimes hearing private conversations without users'...

Unnecessary software can create more ways for hackers to access your device. Even if you don’t use certain programs, they may still run in the background or have security issues. By only installing essential software, you reduce potential entry points for attackers and simplify security management. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.