CyberScout is the nation’s premier consultative provider of identity and data risk management, resolution and education services.

Scam target’s Google Gmail users with Google Doc as lure

Scam target’s Google Gmail users with Google Doc as lure
May 5, 2017

Organizations that use Google for email, as well as thousands of personal Gmail customers, are reporting a scam that starts with an email from a known contact, which says that the person has shared a Google Doc. Recipients are asked to click the link to open, which redirects them to a legitimate Google sign-in page, where they’re prompted to select one of their Google accounts, and then to authorize a legitimate-looking app called “Google Docs” to manage emails. Once the app has permission to manage email, it secretly sends emails to all contacts, with the same phishing link. Personal and business email accounts are commonly used as the recovery email on a number of digital accounts, which means that hackers could get control of Apple, Amazon, Facebook, Twitter or personal Google accounts. Anything linked to a compromised Gmail account is potentially at risk. “We have taken action to protect users against an email impersonating Google Docs, and have disabled offending accounts,” Google said in a statement. Sources:; Motherboard

Drug store tech accused of stealing clients’ identities

A pharmacy technician faces numerous counts of identity theft after he was accused of stealing credit card information from customers at a Nashua, N.H., CVS. Police say Bounhange Tang took photos of credit cards from 20 customers at the pharmacy, then looked up the customers’ addresses in the CVS computer system. He then used the information to order items online and resell them, police said. Source: Fox News

IT managers in federal government see frequent breaches

Forty-two percent of high-level federal IT managers surveyed reported a data breach in the past six months. According to the survey released by cybersecurity company BeyondTrust, one in eight said their systems weathered a data breach in the past 30 days. The survey of senior federal IT managers found that respondents singled out application vulnerabilities, nation-state attacks and malware as the top security threats. Source: The Hill

IRS agent indicted in case of theft of taxpayer identities

A grand jury in Georgia indicted an Internal Revenue Service employee on charges of stealing taxpayers’ identities and filing for tax refunds with their names. Stephanie Parker had access to taxpayers’ Social Security numbers, dates of birth and other personal information. The indictment alleges that she exploited her job at the IRS to steal the information, which she then used to file tax returns. She allegedly directed the refunds she obtained into various bank accounts. Source: Accounting Today

Ransomware attacks go after small businesses

Small businesses are growing as the favored targets for ransomware attacks, with 60 percent shutting down within six months of a breach, according to the National Cyber Security Alliance. This increase of attacks on SMBs could in part be attributed to a false sense of cybersecurity confidence within small businesses. The reality is, when ransomware comes in, it can ruin a small company. Source: CSO

Researchers hack industrial robots, leading to fears of bad parts

Researchers from Trend Micro and Politecnico di Milano demonstrated how industrial robots can be hacked by remotely controlling a robotic arm. The impact could be significant, because if an entire factory’s output is wasted because robots had been secretly tweaked to produce faulty goods, millions could be lost. Worse, parts for planes or cars could be changed as to become dangerous if put out into the real world. Source: Forbes

Sabre says payment, client information could be exposed

Travel industry giant Sabre disclosed what could be a significant breach of payment and customer data tied to bookings processed through a reservations system that serves more than 32,000 hotels and other lodging establishments. Sabre said it was “investigating an incident of unauthorized access to payment information contained in a subset of hotel reservations processed through our Hospitality Solutions SynXis Central Reservations system.” Source: Krebs on Security

Hacker releases ‘Orange’ episodes, says he has more shows

A hacker who claims to have stolen unreleased television shows from several major networks shared the coming season of the Netflix series “Orange Is the New Black” after the person said the streaming service failed to meet its ransom requests. The breach appears to have occurred at the post-production company Larson Studios. The hacker or hackers, who go by the name “thedarkoverlord,” also claim to have stolen unreleased content from ABC, Fox, National Geographic and IFC. Source: The New York Times

Response to denial of service attacks slows

Public and private organizations globally are getting slower at detecting and responding to distributed denial of service attacks as they become larger and more complex, new research shows. More than half of organizations surveyed in a global study released by information services firm Neustar reported taking three hours or more to detect a DDoS attack on their websites in the past year. Forty-eight percent said that they take at least three hours to respond to such an attack. Source: The Hill

Eastern European hacker group could give restaurants indigestion

A sophisticated hacking group with suspected ties to cyber crime gangs operating in Eastern Europe is actively targeting and breaching prominent brand-name restaurants in the United States. A breach suffered by Chipotle was carried out by hackers linked to a group known as FIN7 or Carbanak Group. The hackers appear to be targeting national restaurant franchises. More than 20 U.S.-based hospitality companies have been hacked by FIN7 since summer 2016, two cybersecurity researchers said. Source: Cyber Scoop

False sites pretend to be linked to British banks

DomainTools uncovered 324 fake websites that appeared to be owned by five major U.K. banks, but were not. Researchers found 110 fake HSBC sites, 74 fake sites each for Barclays and Standard Chartered, 66 for Natwest and 22 for Lloyd’s. Out of the 324 domains that were identified as high risk and owned by third parties instead of the banks, some examples included,,, and Source: SC magazine

Breach leads to harsh lesson for IRS, Department of Education 

Lawmakers grilled information security officers at the Department of Education and IRS over a data breach of an information-sharing tool that potentially exposed the personal information of 100,000 Americans earlier this year. The IRS’s Data Retrieval Tool is used by student loan applicants to import tax information to the Free Application for Federal Student Aid on the Department of Education’s website.  IRS Commissioner John Koskinen revealed that as many as 100,000 taxpayers may have had their personal information compromised. Source: The Hill

Health care sector continues to be a frequent target

A record-breaking 328 health care businesses reported data breaches in 2016, surpassing the record of 268 set one year prior, according to the Bitglass 2017 Healthcare Breach Report. Health care records of about 16.6 million Americans were exposed due to hacks, lost or stolen devices, unauthorized disclosure, and other activity. Source: Dark Reading

Immigration services owner jailed for using customer data in tax scam

The owner of an immigration services business was sentenced to two years in prison for an identity theft scheme that involved filing a fraudulent tax return involving the identities of former clients. Ilie Zdragat founded Immigration Visa Services Organization, which helped clients with asylum and citizenship applications, deportation proceedings and other immigration-related matters. According to the plea agreement, Zdragat and another individual filed a false 2011 income tax return using the names and personal information of three former clients. Source: The Sacramento Bee


The post Scam target’s Google Gmail users with Google Doc as lure appeared first on Third Certainty.

Offer 24/7 CyberScout Protection

CyberScout's partnership options help you safeguard the identity and privacy of your policyholders, customers, members and employees. Discover how a customized program can help build brand loyalty, customer retention, and quickly generate long-term recurring revenue.

Get Started