Never share one-time codes or OTP sent to your phone, email, or authenticator app, as these codes are intended only for you and serve as a critical layer of protection for your account. Legitimate companies and organizations will never contact you to request these codes. If anyone asks for your code, it's a scam, refuse to share it to keep your account secure.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.

Report suspicious emails or unusual activity as soon as you notice them—don’t wait. Acting quickly can prevent potential security breaches or data loss. Even if you’re unsure, it’s better to report something that turns out to be harmless than to ignore a real threat. Prompt reporting helps protect both you and your organization. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Cybersecurity experts have revealed a new way hackers can misuse AI assistants like Microsoft Copilot and Grok to secretly control infected computers. The method, called “AI as a C2 proxy” by Check Point, lets attackers send commands and steal information through AI tools, all while blending into normal online activity.

The process works like this: a hacker first infects a computer with malware. Then, the malware talks to the AI assistant using specially designed prompts. The AI fetches instructions from the hacker and sends back responses, effectively acting as a hidden communication channel. Surprisingly, this can happen without needing any account or API key, making it harder to detect or stop.

Experts warn that this is more than just a way to sneak commands past defenses. Hackers could use AI to plan attacks in real time, figure out which computers are valuable targets, and even avoid detection—turning AI into a smart accomplice.

This...

Always remove or completely destroy shipping labels before disposing it, as they contain personal information such as your full name, address, phone number, and tracking number. Criminals can use these details for phishing scams, identity theft, or to track delivery patterns and target your home. To stay protected, shred the label or thoroughly black out all personal and barcode information before throwing packaging away.

 Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.

Never approve a login request you didn’t initiate, as it could be an attempt to access your account. Always verify unexpected prompts before granting access. Enable multi-factor authentication to add an extra layer of protection. If you receive a suspicious request, report it and change your password immediately. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Before connecting any USB drive or charging cable to your computer or mobile device, make sure you trust its source, as unknown devices can introduce malicious software or unauthorized access. Avoid plugging in found USB drives or using charging cables from strangers, since USB connections can transfer data not just power. When possible, use your own charger and cables, and decline unexpected data access prompts to protect your information and system security.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support

Treat cybersecurity as part of your daily routine — not an extra task. Make small, consistent actions like checking links before clicking and keeping your devices updated part of your normal day. Staying proactive helps prevent cyber threats before they cause harm. When security becomes a habit, protecting your information feels simple and automatic. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.

Cybersecurity researchers found the first known harmful Microsoft Outlook add-in used in a real attack. The add-in, called AgreeTo, was once a normal calendar tool but was abandoned after 2022. An attacker took control of its expired web address and replaced it with a fake Microsoft login page. When users entered their passwords, the attacker stole them. Over 4,000 accounts were affected.

This happened because Outlook add-ins load content from a web link that can change over time. Microsoft checks the add-in when it is first approved, but it does not always monitor the live web content later. If a web address expires and someone else takes it, they can use it for phishing or other attacks.

How users can protect themselves:

• Avoid installing old or unused add-ins.
• Remove add-ins you no longer use.
• Turn on multi-factor authentication (MFA) for your Microsoft account.
• Check the web address carefully before entering your...

  ---

  February 11, 2026 15:51 (1 week, 5 days ago) |  0 | 1 minute read

Before signing in or sharing personal information online, take a moment to carefully look at the website address. Make sure the company name is spelled correctly and doesn’t include extra words, strange symbols, or small changes that are easy to miss. If anything about the link looks unusual or different from what you normally see, don’t continue—go directly to the company’s official website instead.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.

Disable auto-connect to Wi-Fi networks. This prevents your device from joining unsafe or unknown networks without your knowledge. Always choose and verify the network manually before connecting. Keeping auto-connect off helps protect your data from being exposed. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.