One of the most common mistakes users make online is reusing the same password across multiple accounts, which can be dangerous if even one account gets hacked. To better protect your information, always create strong, unique passwords that include a mix of letters, numbers, and special characters for different accounts. A trusted password manager can help you generate and safely store these passwords, so you don’t have to remember each one yourself. Taking these simple steps can greatly lower your chances of being targeted by online threats.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support

Always be careful with sensitive information in public places. Avoid talking about confidential matters where others might overhear you. Even a quick glance at your screen could give away important details. Be cautious when using devices in public—someone could be watching your screen. Protect your privacy by staying aware of your surroundings. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Cybersecurity experts have discovered a new hacker group called Water Curse that uses fake GitHub repositories to spread multi-stage malicious software. Disguised as security or developer tools, the malicious software steals sensitive data like passwords, browser info, and session tokens, and gives hackers remote access to infected systems. It uses Visual Basic Script and PowerShell to run hidden scripts, install malicious apps, and gather system data while avoiding detection and staying on the system long-term.

At least 76 GitHub accounts are linked to the group, and the campaign may have started in March 2023. Water Curse targets developers and the software supply chain by abusing trusted platforms like GitHub. Their repositories contain malicious software, game cheats, crypto wallet tools, bots, and data stealers. The stolen information is sent through platforms like Telegram and file-sharing websites.

Other recent...

Long before firewalls or antivirus software take action, your awareness is what truly keeps threats away. Stay alert for suspicious emails, unexpected attachments, and unfamiliar links—even if they seem to come from someone you trust. By staying informed and thinking before you click, you can prevent online threats before they ever begin.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support

Passwords can be cracked—biometrics like fingerprints or facial recognition offer stronger protection.

Do:

• Enable biometrics on all devices
• Use more than one method (e.g., fingerprint + face)
• Keep security settings updated

Avoid:

• Never disable biometrics after setup
• Avoid easy PINs or guessable logins
• Always enable two-factor authentication

Protect your data with security as unique as you!

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support

Anyone can be a target, no matter their role within the company. Attackers don’t only focus on executives; they look for any way into the system. Anyone with access to company data can be targeted. Security is everyone’s responsibility, regardless of position. It’s important to always stay alert and cautious. Following security best practices helps protect both individuals and the company. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Cyberattacks can happen without warning, so always stay one step ahead by practicing strong cybersecurity habits. Keep your devices and software up to date, use strong passwords with multi-factor authentication, and stay alert for phishing attempts. Being prepared today is the best way to avoid being caught off guard tomorrow.

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support

Avoid letting family members use your work device—even for seemingly harmless tasks. Sharing access, even briefly, can lead to unintended consequences. Unintended downloads, misclicks, or changes to settings can compromise sensitive data and security protocols. Even trusted users can accidentally introduce security risks without realizing it. To protect your data and your organization, keep working devices for work use only. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Phishing emails often look legitimate, but small details can reveal the scam. Watch out for unexpected messages, urgent demands, or odd-looking links. One common trick is slight changes to domain names—like replacing letters or adding extra characters—to mimic trusted sources. If something feels off, don’t rush—pause, double-check the sender’s email address, and verify the request through a trusted channel before taking action. 

Do you have a question? Submit a ticket at [PB8324.3] Data Security Support. 

Why DNS Security Matters

While firewalls and antivirus tools get most of the attention, DNS is a critical — and often overlooked — layer of cybersecurity. As the system that connects users to websites, apps, and online services, DNS is essential to internet functionality. But because it wasn’t built with security in mind, it's become a prime target for attackers.

Common threats like DNS spoofing, hijacking, and tunneling can redirect users, steal data, or shut down services entirely. Since DNS plays a role in nearly every online interaction, securing it is not just important — it's a core defense against modern cyber attacks.

Source: https://thehackernews.com/2025/06/why-dns-security-is-your-first-defense.html