Before sending sensitive information, double-check the recipient's email address or contact details to avoid sending it to the wrong person. Don't rely solely on auto-complete suggestions, as they can sometimes be inaccurate. Taking this step helps ensure your data stays private and prevents sending it to unintended recipients. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.

Facebook users are being targeted by a scam involving a network of fake websites designed to steal personal and financial information. Identified by Recorded Future’s Payment Fraud Intelligence team on April 17, 2024, this scam, named ERIAKOS, uses the content delivery network oss.eriakos[.]com. The fraudulent sites are only accessible through mobile devices and misleading ads, making them harder for automated systems to detect. The network includes 608 fake websites and operates in short, intense bursts. It specifically targets mobile users who encounter these scam sites through Facebook ads, often promoting limited-time discounts to attract clicks. Recorded Future notes that up to 100 Meta Ads for a single scam site can be served in a single day.

Source: Facebook Ads Lead to Fake Websites Stealing Credit Card Information (thehackernews.com)

Think twice before revealing personal information or discussing sensitive topics on online forums or community platforms. Validate the platform's authenticity and minimize sharing unnecessary details to safeguard your privacy and security online. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Ignoring security alerts on your devices increases the risk of cyberattacks and data breaches. Take every alert seriously, investigate promptly, and keep your software updated to protect against evolving threats. Staying vigilant and acting quickly can significantly enhance your cybersecurity defenses.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.

 

Security questions are not a reliable substitute for strong passwords. For better account protection, use complex, unique passwords and enable multi-factor authentication whenever possible. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.

Before entering your passwords, always verify the authenticity of websites. Even if a site looks legitimate, check for HTTPS in the URL to ensure it's secure. Never enter your password on a site that doesn’t have this secure connection. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Enhance digital identity security by adopting multi-factor authentication (MFA) or two-step verification for accessing online accounts. Refrain from using readily available personal information for verification questions to bolster account protection against unauthorized access. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Singapore's retail banking sector has been given a three-month deadline to eliminate the use of one-time passwords (OTPs) for online account authentication, according to a joint announcement by the Monetary Authority of Singapore (MAS) and the Association of Banks in Singapore (ABS) on July 9, 2024. 

To combat the growing threat of phishing attacks, banks will transition to using digital tokens for customer logins. The MAS stated, "Customers who have activated their digital tokens on mobile devices will be required to use them for accessing their bank accounts via web browsers or mobile banking apps." This move aims to enhance security by eliminating the vulnerability associated with OTPs, which scammers can potentially steal or trick users into revealing. 

The MAS has urged all customers to activate their digital tokens to protect against credential theft and financial fraud. The shift to digital tokens is expected to provide a more secure authentication...

Apple has issued a firmware update for AirPods addressing a security flaw that could potentially allow unauthorized access to the headphones. Identified as CVE-2024-27867, the vulnerability impacts various models including AirPods (2nd generation and later), AirPods Pro, AirPods Max, Powerbeats Pro, and Beats Fit Pro. 

According to Apple's advisory released on Tuesday, the issue involves an authentication weakness during connection requests to previously paired devices. This flaw could enable a malicious actor within Bluetooth range to spoof a legitimate device and gain unauthorized access to the headphones. The exploitation could potentially lead to eavesdropping on private conversations. 

Apple has resolved the issue by enhancing state management, thereby mitigating the risk posed by this vulnerability. 

Source: July 24, 2024 21:12 (on 7/25/24) |  0 | 1 minute read

Exercise caution when accepting friend requests or connections from unfamiliar individuals on social media. Refrain from publicly sharing personal details such as your home address, phone number, or upcoming vacation plans to minimize potential risks to your privacy and security. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support.