Tag: ciberseguridad

Cybercriminals are taking advantage of the emotional state of victims of online fraud, increasing the harm at a moment of vulnerability.

According to the FBI, more than a hundred reports of these attacks have been received in the last two years.

Scammers create fake profiles on social media and join groups of other victims, claiming to have recovered their money with the help of the FBI’s Internet Crime Complaint Center (IC3), which lends credibility to their scam.

#ICYMI, the FBI released a #PSA last month to inform businesses of snail-mail letters, purportedly from a ransomware group, that are sent to corporate executives and threaten the release of sensitive data. The FBI assesses the letters are a scam: https://t.co/bN1igjgbRV pic.twitter.com/Vjy9YriB50

— FBI (@FBI) April 8, 2025

The FBI warns about fake recovery scams targeting fraud victims

One of the most common strategies involves contacting victims through different platforms, including emails, phone calls, social media, and forums.

Those who believe in these claims are directed to communicate with an individual who goes by the name Jaime Quin on Telegram. Quin presents himself as the Director of IC3, but in reality, he is part of the fraudulent scheme. Through this contact, he tells victims that he has recovered their funds and asks for access to their financial information, which can result in further theft.

The FBI has emphasized that the first contact by the scammers can vary, but almost all complainants report that they were promised the recovery of lost funds.

Hang up on scammers!

If you believe you are a victim of a scam, end all communication with the perpetrator.

Find #FBI tips on how to protect yourself from scams at: https://t.co/PD4Mt6ujmw pic.twitter.com/hUPzGI4HAV

— FBI Philadelphia (@FBIPhiladelphia) April 21, 2025

However, these promises are a deception that seeks to re-victimize those who have already suffered significant losses. To minimize the risk of falling into these traps, individuals are advised to only communicate with authorities through official channels and to never share passwords or sensitive financial information.

Security forces warn that it is unlikely they will contact you informally and, in no case, will they request sensitive information such as passwords or access to private services. It is vital to stay alert and protect yourself against these fraud attempts that seek to take advantage of people’s trust and vulnerability.

Cybersecurity experts have warned of an increase in cyberattacks targeting sensitive government servers, exploiting vulnerabilities in government software.

This warning originates from the cybersecurity firm Trimble, which has identified that its Cityworks tool has been used in these attacks.

Trimble alerted its customers through a letter, in which it mentions the discovery of a deserialization vulnerability, labeled as CVE-2025-0994, which allows for remote code execution (RCE) with a high severity score of 8.6.

Trimble released security updates for a deserialization vulnerability CVE-2025-0994 impacting its Cityworks Server AMS. This enables threat actors to conduct remote code execution against a customer’s Microsoft IIS web server. Apply updates & learn more ? https://t.co/TyBvD9evaQ pic.twitter.com/Bqxe5mVe7r

— CISA Cyber (@CISACyber) February 7, 2025

What we know about this state vulnerability

Exploiting this vulnerability could allow attackers to deploy Cobalt Strike beacons on Microsoft Internet Information Services (IIS) servers.

Cityworks, a geographic information systems (GIS)-based asset and permit management software, is designed to help governments and public services efficiently manage their infrastructure and operations.

After receiving reports of unauthorized access attempts to specific Cityworks implementations, Trimble has released updates to mitigate the risks: version 15.x has been updated to 15.8.9, and 23.x to 23.10.

In addition to the updates, the company warned about incorrect configurations of attachment directories and elevated IIS identity permissions in some on-premise implementations, which could increase risk. Trimble emphasizes that these issues must be addressed simultaneously to resume normal operations with Cityworks.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a coordinated advisory, urging affected organizations to apply security patches immediately and conduct an impact analysis and risk assessment before implementing defensive measures.

Organizations that detect malicious activity must follow internal procedures and report any incident to CISA for better tracking.

Gift card scams are a very popular tactic worldwide, where scammers trick people into buying the cards and providing the codes they contain so that criminals can access the money without leaving a trace.

Companies like Google, for which Google Play gift cards represent a large part of the business pie, take a commission on these gift card purchases ranging from 15 to 30% per purchase. And now a federal judge says that Google has no responsibility in the scams with all that it implies.

A federal judge dismissed a proposed class action lawsuit accusing Google of illegally profiting from Google Play gift card scams by refusing to refund millions of dollars stolen from victims https://t.co/OGT0W6mRIL pic.twitter.com/Xn8jrel5gR

— Reuters Legal (@ReutersLegal) November 5, 2024

Story of a scam that led to a federal complaint

The story begins in April 2021, when Judy May, a resident of Brownsville (Indiana), was the victim of a scammer who pretended to be a relative and told her she could qualify for a federal grant if she purchased Google Play gift cards.

Judy May was told she had to send codes from the back of gift cards to cover certain costs in advance and receive the grant money on the same day. She says she lost $1,000 due to the scam, money that Google refused to reimburse her.

May filed a class action lawsuit against Google in which she accused the company of illegally profiting from scams by refusing to refund money to victims. The lawsuit also claimed that Google engaged in a series of unfair practices and should place warnings on its gift cards informing buyers of potential scams.

District Judge Beth Labson Freeman dismissed the lawsuit this week. The judge stated that it was the scammers, not Google, who persuaded May to buy the cards, and added that the plaintiff had not demonstrated that Google knew it was receiving stolen funds or that it was the cause of the losses.

By the way, Google receives between 15% and 30% commission for the purchase of gift cards. Despite this, Judge Freeman said that the tech giant was not responsible for keeping the money, as Google’s conduct was not related to the original fraud.

Freeman also said that Google did not engage in unfair practices and agreed with the company’s opinion that the funds were not considered stolen when May purchased the cards.

According to the FTC, Americans lost $217 million in gift card or reload card scams last year, and that only includes the cases that were reported.

A widespread disruption related to Windows workstations has affected major companies, such as Sky News UK, Melbourne Airport, or the entire Aena platform, responsible for airports in Spain.

Companies such as banks, airlines, telecommunications companies, broadcasters and television stations, and supermarkets have been left without service after blue screen errors appeared on Windows workstations worldwide.

Thousands of Windows computers are experiencing a blue screen of death (BSOD) issue upon startup, which affects banks, airlines, television networks, supermarkets, and many other companies worldwide.

BREAKING: A global internet outage is affecting airlines, banks, media and offices from the U.S. to Australia. https://t.co/zFWcbdKWF1

— The Associated Press (@AP) July 19, 2024

A failure that comes from the CrowdStrike cybersecurity tool

A faulty update from the cybersecurity provider CrowdStrike is disconnecting affected computers and servers, forcing them into a recovery boot loop so that the machines cannot start properly.

CrowdStrike is widely used by many companies worldwide to manage the security of Windows computers and servers.

Banks, airlines, and Australian television networks were the first to sound the alarm when thousands of machines started to malfunction. Now the issues are spreading as European-based companies begin their workday.

.@SkyNews have not been able to broadcast live TV this morning, currently telling viewers that we apologise for the interruption. Much of our news report is still available online, and we are working hard to restore all services.

— David Rhodes (@davidgrayrhodes) July 19, 2024

The British chain Sky News is currently unable to broadcast its morning news bulletins, and displays a message apologizing for “the disruption to this broadcast”. Ryanair, one of Europe’s largest airlines, also says it is experiencing a computer problem with “third parties” that is affecting flight departures.

The Federal Aviation Administration of the United States says that all flights of Delta, United, and American Airlines are suspended due to a “communication problem”. And Aena, responsible for all flights in Spain, is announcing delays due to this failure.

Debido a una incidencia en el sistema informático, se están produciendo alteraciones en los sistemas de Aena y en los aeropuertos de la red en España, lo que podría provocar retrasos. Estamos trabajando para solucionarlo lo antes posible.

Mientras, las operaciones se están… pic.twitter.com/bSDL5afBG0

— Aena (@aena) July 19, 2024

In a Reddit thread, hundreds of IT administrators are reporting widespread issues and the steps to fix them involve booting the affected Windows machines in safe mode and navigating to the CrowdStrike directory and deleting a system file.

This will be problematic on some cloud-based servers, or even for Windows laptops that are deployed and used remotely. Microsoft is facing a very busy Friday.

Digital security has become a very important factor in current times, where more and more money and goods are being moved. There are recurring cases of people who suffer cybercrimes or lose key information because they do not know, or do not apply, some fundamentals that are much simpler than they might seem. In fact, with four useful habits, the digital security of any user will be greatly improved without making great efforts.

Many times, everyday users ignore many unwritten cybersecurity rules for simple convenience, but there are many others that can be carried out with little effort and that will ensure that valuable information is always properly protected. For that reason, if you are interested in improving your digital habits in that area, do not hesitate to take pen and paper (or open a notepad document).

4 steps to improve your digital security

• A timely restart can save you trouble. It is important to always locate the restart button or, failing that, the shortcuts to force a restart on your device, whether it’s a smartphone, tablet, or PC. For that reason, you should always know how to restart the device you are using.
• Backups are your friends. Whenever you need to factory reset a device, you risk losing everything inside. For that reason, a good habit is to regularly make backups to be able to recover the information or files that have the most value to you.

• Don’t forget your recovery keys. Many times, due to the importance of regularly changing device passwords, you can forget which password you were currently using. However, if you keep your recovery key intact, or the unlocking method you have chosen to apply in your verification to recover your account, you will be able to access your accounts even if you forget your passwords. Whether it’s Google, Microsoft, or any other email client accounts, your recovery keys can save you a serious headache.
• Encrypt your private data. Nowadays, it is very easy to encrypt content and put a password on it. If you want your personal data or files to be properly protected, don’t hesitate to encrypt them, as in that case, they can only be opened by people who have the password you have set during the encryption phase.

It may seem the opposite, but it turns out that the aging generation of Boomers (not to be confused with the Spanish baby boomers, who would be Generation X) is the least likely to be a victim of cybersecurity crimes. The reason? That, despite generally having less knowledge, their distrust prevents them from falling prey to fraud.

Likewise, Generation Z and Millenials are the generations most prone to suffer cyber-attacks, as their more regular presence on the network and their greater trust makes them fall into more traps and become victims of a greater number of online crimes.

Younger people suffer more crimes due to overconfidence

This is the conclusion reached in a study conducted by Yubico, a Swedish company specializing in cybersecurity products and services. This study has shown that, despite not being digital natives, they are the most careful users in aspects such as the introduction of banking data or the use of different passwords.

It is also worth mentioning that, although Boomers are the least likely to suffer this type of attack, they also have less activity and use of the services available on the Internet due to the general distrust of making online payments. This implies that Boomers distrust online purchases by up to 42%, well above the 30% of Generation X, 29% of Millenials, or 23% of Generation Z.

The digital divide is a thing of the past

Just a decade ago there was talk that the digital divide was a serious problem, but over the years and with the democratization of Internet access through smartphones, this problem has become less and less of a problem, both in terms of economic impact and age. Nowadays it is common to see retired people doing business and shopping online, although it used to be difficult to see in the past.

For this reason, with so many people being regular users of the Internet, cybersecurity has become more important than ever, especially with today’s advanced technologies. In addition to software improvements by companies offering their products and services over the Internet, the prevention qualities that each user has internalized are also important.