YouTube could allow you to use voice to buy in-video products

0
[ad_1]

YouTube could allow you to use your voice in order to buy in-video products. Do note that this feature has not been announced by Google, though, nor anything of the sort. It appeared in the form of a patent, which suggests it could be implemented at some point.

The report comes from Calibre Cleaning who partnered up with @xleaks7. Considering that YouTube is one of the most popular video streaming services in the world, this could be a very important addition to the service.

YouTube could get a feature that allows you to buy in-video products by using your voice

It would make it extremely easy for users to purchase things by just using their voice. That would not only boost YouTube’s income but also allow creators to earn extra cash as well.

You can already use voice in order to navigate YouTube, sure. You can use it to search, play, and navigate the UI, but not purchase products. If this feature gets implemented, you could be able to choose a product during the video playback itself and instruct your phone to send you to its listing.

That’s basically the gist of the patent here. It, of course, remains to be seen how exactly will Google implement this, if it even comes to that. Knowing Google, however, it’s most certainly coming, the only question is… when.

Google Ads are the most popular form of advertising online, and the company has mastered the art of advertising. This is also a part of it, kind of. The products that would be on offer would be an ad of sorts, either a direct or indirect one, and Google would only allow you to act upon your desire to buy it without actually tapping on the link first.

We’re not sure when or if it’s coming, though

We have no idea when could this feature arrive, however. As is usually the case with patents, they could indicate an upcoming feature, or not. Also, they never indicate when something could happen, of course.

Google may end up using that patent as part of a different feature or something of the sort, who knows? So don’t get your hopes up just yet, we’ll have to wait and see.


[ad_2]
Source link

Microsoft will release a big update this year, but it’s not Windows 12

0
[ad_1]

Microsoft’s announcement about the upcoming updates to Windows has brought clarity to users eagerly awaiting the next iteration of the popular desktop operating system. Contrary to expectations of a Windows 12 release, Microsoft has confirmed that the next significant update will be Windows 11 Version 24H2, slated for release later this year. This revelation aligns with Microsoft’s strategy of annual feature updates for Windows 11, with each release scheduled for the second half of the year.

Windows Insiders in the Canary and Dev Channels have already started seeing the versioning updated to Windows 11, version 24H2, indicating that this will be the annual feature update for the year. While Microsoft has yet to provide any specific release date, users now have a clear understanding of the next Windows update and its expected timeframe.

Microsoft has also introduced several notable features in the latest Insider Preview builds for Windows 11

In addition to the confirmation of Windows 11 Version 24H2, Microsoft has introduced several notable features in the latest Insider Preview builds for Windows 11. One significant addition is the inclusion of sudo support, allowing users to run commands as administrators more conveniently, akin to the functionality in Linux. Furthermore, Microsoft has enhanced Copilot in Windows with more contextual capabilities, enhancing the user experience with the AI chatbot. Visual changes are also evident, with settings transitioning from Control Panel-style dialog boxes to integration within the Settings app.

While Windows 11 Version 24H2 garners attention, MSPoweruser expects the release of Windows 11 Version H1 before that, likely within the first half of 2024. Dell’s revelation indicates that Version 24H1 will be available for download from April of this year, with factory installations slated for August. Notably, Version 24H1 will introduce support for WiFi 7, representing a significant leap in wireless networking technology, promising enhanced speed, performance, and efficiency.

Furthermore, Samsung’s announcement adds to the excitement surrounding the upcoming Windows updates. The ability to use Galaxy phones as webcams for Galaxy Book Windows PCs is expected to debut with Windows 11 Version 24H1. This feature will offer users added flexibility and convenience, enhancing the overall ecosystem of Windows-powered devices.


[ad_2]
Source link

Apple Cash adds virtual card support in iOS 17.4 beta

0
[ad_1]
Not long ago, Apple rolled out the iOS 17.4 update for beta testers, revealing preparations for app sideloading and alternative browser engines in the EU. However, the update also brings a notable change for Apple Cash users.

As reported on Reddit and noted by 9to5Mac, Apple Cash users on iOS 17.4 beta can now create virtual card numbers for online shopping where Apple Pay is not accepted.

In the iOS 17.4 beta, Apple Card customers are prompted with a message to “Set Up Virtual Card Number.” The message highlights improved security, ensuring that your card information stays safe “with a new security code for every transaction.”

Apple Cash, a prepaid debit card, has been restricted to use solely with Apple Pay, lacking a visible card number. Users can use funds on an Apple Cash card for different purposes, like sending money to friends and family, transferring to a bank, or applying it to an Apple Card balance.

If you choose to set up your Apple Cash virtual card number, you gain access to features like viewing the card number, generating new card numbers, security codes, and more. This functionality mirrors what has been available for the Apple Card credit card since its launch.

As of now, it seems that the virtual card feature is accessible to Apple Card users participating in the beta. Whether it will be made more widely available upon the official release of iOS 17.4 or reserved for a formal feature launch in the future remains uncertain.

Apple recently announced that its US-exclusive Apple Card has surpassed 12 million customers. To further attract users, Apple has increased the interest rate for savings accounts to 4.5%.


[ad_2]
Source link

ExpressVPN Flaw Exposes DNS Requests to Third-Party Server

0
[ad_1]

Customers of ExpressVPN have been notified of a vulnerability in the most recent version of the Windows app that permitted some DNS requests to be routed to a third-party server, usually the user’s internet service provider (ISP).

After a reviewer pointed out that there might be a problem with the way the app handles DNS requests for users who have “split tunneling enabled,” ExpressVPN’s engineers swiftly released a fix for the Version 12 app for Windows.

Engineers have temporarily removed a feature from its Windows app to reduce the possibility of mishandling DNS requests.

Document
Live Account Takeover Attack Simulation

Live attack simulation Webinar demonstrates various ways in which account takeover can happen and practices to protect your websites and APIs against ATO attacks.

Overview of the ExpressVPN Flaw

A user’s DNS requests should be routed to an ExpressVPN server when they are connected to the service. However, the flaw made it possible for some of those requests to be routed to a different server—typically, the user’s ISP—instead of the original server.

“This lets the ISP see what domains are being visited by that user, such as google.com, although the ISP still can’t see any individual webpages, searches, or other online behavior,” the VPN provider reports.

“All contents of the user’s online traffic remain encrypted and unviewable by the ISP or any other third party.”

VPN expert and staff writer at CNET, Attila Tomaschek, contacted ExpressVPN to report that he was observing DNS requests on his Windows computer that weren’t going to ExpressVPN’s dedicated servers as expected.

Particularly, this happened when he enabled split tunneling, which limits which apps may send traffic across the VPN.

To reduce the possible continued risk to consumers, ExpressVPN released an update that completely disabled split tunneling on one app platform, Version 12, for Windows, even though the vulnerability is thought to affect less than 1% of users.

“The feature will remain deactivated while engineers investigate and fix the problem”, the report said.

Affected Versions

All versions released between 12.23.1 and 12.72.0 are affected by this issue on Windows.

Fix Available

On Windows, users of ExpressVPN versions 12.23.1 to 12.72.0 should update to the most recent version, 12.73.0.

If you use the Windows Version 12 app, you need to update to the most recent version if it hasn’t updated itself previously. Users do not need to take any action if they are using the Windows Version 10 app or any of the apps for other platforms and devices.

As soon as engineers are certain that the DNS issue has been fixed, split tunneling will resume on Version 12. It’s still accessible in the Windows app version 10 and is operating as it should.

Stay updated on Cybersecurity news, Whitepapers, and Infographics. Follow us on LinkedIn & Twitter.


[ad_2]
Source link

A week in security (February 5 – February 11)

0
[ad_1]

February 9, 2024 – Ivanti has found yet another vulnerability in versions of Connect Secure, Policy Secure, and ZTA gateways.

February 9, 2024 – FBI and CISA have produced guidance about Chinese APT group Volt Typhoon and other groups that use Living off the Land (LOTL) techniques.

February 8, 2024 – LastPass has warned about a fake app called LassPass, available in the Apple App Store.

February 8, 2024 – A criminal group called ResumeLooters has stolen the personal information of over two million job seekers from at least 65 different websites.

February 7, 2024 – Your essential guide to toothbrush security.


[ad_2]
Source link

Chinese Websites Posing as Local News Outlets

0
[ad_1]

A network of at least 123 websites based in the People’s Republic of China that posed as local news outlets in 30 countries across Europe, Asia, and Latin America. 

The websites are disseminating pro-Beijing falsehoods and ad hominem attacks together with more commercial news releases as part of a campaign dubbed PAPERWALL.

Throughout the network of websites, PAPERWALL’s most aggressive aspects are ephemeral; articles critical of Beijing are frequently removed from these platforms after a predetermined period.

The campaign illustrates a large-scale influence operation that supports Beijing’s political objectives while supporting commercial and political goals.

Document
Protect Your Network From Data Breach

Prevent malware from infecting your network at the delivery stage by intercepting malicious files in transit from their source to the target device’s web browser..

Operation of PAPERWALL Campaign

On October 25, 2023, an article appeared in the Italian newspaper Il Foglio that revealed a small network of six websites that were not affiliated with any actual Italian newsrooms but were acting as news outlets for Italian consumers. The websites were not listed as news outlets in the national registry.

List of 6 domains hosting Italian-language websites as identified by Il Foglio

Citizen Lab reports that the detected domains followed a certain naming convention: the name of an Italian city in the local spelling (i.e. “Roma” or “Milano”), followed by mundane terms (for example, “moda” meaning fashion; “money”; or “journal”).

The websites housed on those domains shared a common structure, layout, and content, featuring a mix of general political, criminal, and entertainment articles with a substantial portion of news about China or even directly from Chinese news sources.

Il Foglio alleged that the network was managed from China, potentially by the Chinese government, based on content analysis and six domains that resolved to an unnamed IP address held by Tencent Computer Systems Inc., a significant Chinese firm.

The homepage menus of all the websites that were found were nearly identical and usually included the following topics: politics, economy, culture, current affairs, and sports. 

The content being disseminated was a combination of press releases, anonymous disinformation, and occasionally stories from Chinese official media that were scraped and reprinted from local media in the targeted nation.

“We observed the network as mimicking local news outlets in 30 different countries”, says the report.

Countries Targeted
Countries Targeted

PAPERWALL websites usually included local references in their titles to give the impression that they were authentic local news sources. For instance, city names are frequently used for Italian and Spanish websites, whereas “Eiffel” or “Provence” is used for websites in the French language; “Viking” is utilized for websites in Norwegian.

PAPERWALL shares characteristics with HaiEnergy, an influence operation that the cybersecurity firm Mandiant initially revealed in 2022. Currently, PAPERWALL is a distinctive campaign with its own operators and set of special methods, strategies, and tactics.

Much of the content that PAPERWALL publishes comes from Times Newswire, a newswire service that was once associated with HaiEnergy.

Particularly, Times Newswire routinely disseminates pro-Beijing political content, including ad hominem attacks, by hiding it among a substantial volume of ostensibly positive commercial content.

Although the campaign’s websites have received very little attention thus far, because of their rapid growth and ability to adapt to local languages and content, there is an increased potential for unintentional amplification by target audiences and local media.

Stay updated on Cybersecurity news, Whitepapers, and Infographics. Follow us on LinkedIn & Twitter.


[ad_2]
Source link

How privacy tools can be advocates

0
[ad_1]

In the advanced age, the mission for social great has extended to incorporate capable and circumspect web-based commitment. This investigation digs into the positive capability of unknown review, featuring how protection instruments can act as backers for moral practices, client strengthening, and the advancement of a safer and deferential internet-based climate.

I. Introduction: Redefining Online Engagement for Social Good

1.1 The Intersection of Privacy and Social Good

Introduce the concept of using anonymous viewing as a tool for social good, emphasizing the potential positive impact on digital communities and individual well-being.

1.2 Empowering Users Through Privacy

Feature the job of protection devices in enabling clients to connect dependably and morally in web-based spaces, encouraging a feeling of command over their computerized encounters.

II. Privacy Tools as Advocates: Navigating the Digital Landscape Responsibly

2.1 Encryption and Anonymity

Explore how encryption and anonymity, as Instanavigation privacy tools, can advocate for responsible online engagement by safeguarding user identities and interactions.

2.2 Promoting Ethical Practices

Examine how protection devices can advance moral works, empowering clients to connect cautiously and deferentially, in this way adding to a more sure web-based culture.

III. User Empowerment: Navigating Digital Spaces with Confidence

3.1 Privacy Features for User Control

Look at the security highlights implanted in devices that engage clients with more noteworthy command over their computerized presence, encouraging a feeling of trust in exploring the web spaces.

3.2 Encouraging Responsible Digital Exploration

Talk about how protection devices support a capable computerized investigation by permitting clients to draw in without apprehension about judgment or outlandish interruption into their web-based exercises.

IV. Advocacy for Digital Rights: Privacy as a Fundamental Tenet

4.1 Championing Digital Rights

Explore how privacy tools can serve as advocates for digital rights, emphasizing the fundamental importance of privacy in the broader context of online interactions.

4.2 Educational Campaigns on Privacy

Examine the job of security devices in instructive missions that bring issues to light about the meaning of protection, encouraging a culture of educated and dependable computerized citizenship.

V. Addressing Cybersecurity Concerns: A Holistic Approach

5.1 Mitigating Cybersecurity Risks

Look at how security devices assume a part in relieving online protection chances, guaranteeing that clients take part in mysterious surveys without undermining their data or becoming defenseless against dangers.

5.2 Contributing to a Secure Digital Landscape

Examine how the utilization of protection devices adds to a safe computerized scene, where people can investigate content prudently without presenting themselves to expected hurt.

VI. Fostering Inclusivity: Privacy as a Catalyst for Respectful Engagement

6.1 Inclusivity in Digital Spaces

Investigate how protection apparatuses cultivate inclusivity in computerized spaces by permitting clients from assorted foundations and points of view to draw in without apprehension about judgment or separation.

6.2 Digital Empathy and Understanding

Discuss how anonymous viewing, facilitated by privacy tools, can promote digital empathy and understanding, creating a more compassionate online environment.

Conclusion: Harnessing Privacy Tools for a Positive Digital Future

As this investigation finishes up, it becomes apparent that protection apparatuses can be strong supporters of mindful and moral web-based commitment. By supporting computerized privileges, cultivating client strengthening, and tending to online protection concerns, these devices add to a positive advanced future.

The mix of security highlights in web-based stages safeguards clients as well as advances a culture of regard, inclusivity, and social great, eventually molding a computerized scene where people can explore with certainty and protection, adding to the improvement of the internet-based local area all in all.

Website: https://insta-navigation.com/write-for-us/


[ad_2]
Source link

New Android MoqHao Malware Executes Automatically Installation

0
[ad_1]

The Roaming Mantis threat group distributes a well-known Android malware family called “MoqHao.” This malware family has been previously reported to be targeting Asian countries such as Korea and Japan. Though the distribution method remains the same, the new variants use a very dangerous technique.

Typically, the MoqHao malware requires user interaction to install and launch the app. However, the new variant of this malware does not require any execution.

Android is currently protected with Google Play Protect, which is the default app scanner that warns users or blocks applications that contain malicious behavior.

Document
Protect Your Network From Data Breach

Prevent malware from infecting your network at the delivery stage by intercepting malicious files in transit from their source to the target device’s web browser..

Android MoqHao Malware

As part of the distribution, the threat actors send a malicious phishing SMS message to the users, which will contain a malicious shortened link. The device downloads the malicious application once the user clicks on the link. 

This new variant has several different behaviors when compared to the previous variants of this malware, as it launches automatically after installation without user interaction.

Differences between typical MoqHao and Modern MoqHao (Source: McAfee)

Android security checks an installed application and the specific value used by that application, which must be unique. The threat actors are abusing this particular feature to auto-executing the application without user interaction.

Moreover, the threat actors also use social engineering techniques to set this malicious app as a default SMS app. Further investigations also revealed that the malware has been extended with targets, including countries like South Korea, France, Germany, and India.

Fake messages to target different countries
Fake messages to target different countries (Source: McAfee)

Furthermore, this variant connects with a C2 server through WebSocket. This new malware has been added with several other commands for checking SIM state, sending SMS messages to other contacts and C2 servers, setting Sound/Vibrate/Silent mode, and various other purposes.

Command Description 
getSmsKW Send whole contacts to the C2 server 
sendSms Send SMS messages to someone 
setWifi Enable/disable Wifi 
gcont Set Vibrate/Silent mode according to the SDK version 
lock Store Boolean value in “lock” key in SharedPreferences 
bc Check SIM state 
setForward Store String value in “fs” key in SharedPreferences 
getForward Get String value in “fs” key in SharedPreferences 
hasPkg Check the specific package installed on the device 
setRingerMode Set Sound/Vibrate/Silent mode 
setRecEnable Emulate the Home button click 
reqState Send device information (Network, Power, MAC, Permission) to C2 server 
showHome Call a specific number with a Silent mode 
getnpki Send Korean Public Certificate (NPKI) to C2 server 
http Send HTTP requests 
call Get the list of installed packages 
get_apps Send all photos to the C2 server 
ping Check C2 server status 
getPhoneState Get unique information such as IMEI, SIM number, Android ID, and serial number 
get_photo Send all photos to C2 server 

McAfee provides comprehensive information about the malware, including details on its source code, techniques used to deploy it, targets that have been affected by it, and other important insights.

Indicators of Compromise

SHA256 Application Name Package Name 
2576a166d3b18eafc2e35a7de3e5549419d10ce62e0eeb24bad5a1daaa257528 chrome gb.pi.xcxr.xd 
61b4cca67762a4cf31209056ea17b6fb212e175ca330015d804122ee6481688e chrome malmkb.zdbd.ivakf.lrhrgf 
b044804cf731cd7dd79000b7c6abce7b642402b275c1eb25712607fc1e5e3d2b chrome vfqhqd.msk.xux.njs 
bf102125a6fca5e96aed855b45bbed9aa0bc964198ce207f2e63a71487ad793a chrome hohoj.vlcwu.lm.ext 
e72f46f15e50ce7cee5c4c0c5a5277e8be4bb3dd23d08ea79e1deacb8f004136 chrome enech.hg.rrfy.wrlpp 
f6323f8d8cfa4b5053c65f8c1862a8e6844b35b260f61735b3cf8d19990fef42 chrome gqjoyp.cixq.zbh.llr 

Stay updated on Cybersecurity news, Whitepapers, and Infographics. Follow us on LinkedIn & Twitter.


[ad_2]
Source link

Hackers Leak Alleged Partial Facebook Marketplace Database

0
[ad_1]

The alleged partial Facebook Marketplace database has been leaked on Breach Forums by the infamous threat actor IntelBroker. They claim that another actor, using the alias “algoatson,” stole the database from a contractor responsible for managing cloud services for Facebook.

The infamous threat actor known as IntelBroker has claimed responsibility for leaking a partial database of the Facebook Marketplace. The alleged breach, apparently conducted by another cybercriminal using the alias “algoatson” on Discord, occurred in October 2023. However, the database was only made public earlier today, on Sunday, February 11, 2024.

According to a post on Breach Forums, IntelBroker disclosed that the hack targeted a contractor responsible for managing cloud services for Facebook. The breach resulted in the theft of approximately 200,000 entries from the user database, compromising sensitive personal information.

It is worth noting that IntelBroker did not disclose the name of the allegedly targeted contractor. Facebook doesn’t utilize a single contractor company to manage all of Facebook Marketplace data. Instead, they leverage a combination of internal teams and external partnerships depending on the specific data aspect.

The compromised data includes full names, Facebook IDs, phone numbers, physical IDs, and Facebook profile settings of the affected users. Hackread.com can exclusively confirm that there are 24,127 email addresses involved in the leak.

Hackers Leak Alleged Partial Facebook Marketplace Database
Screenshot from Breach Forums (Credit: Hackread.com)

The good news is that there are not passwords involved, but the bad news is that this breach potentially exposes Facebook Marketplace users to various forms of identity theft, phishing attacks, and other malicious activities.

IntelBroker

IntelBroker, notorious for their involvement in several high-profile cyber attacks, including the leaking of sensitive US Department of Defense documents in December 2023, has a track record of breaching organizations and selling stolen data on underground forums.

Their previous exploits include the General Electric security breach, which led to the sale of DARPA-related network access in November, 2023, as well as the Weee! Grocery Service hack, where 1.1 million accounts were leaked online in Februrary 2023.

At the time of reporting, attempts to contact “algoatson” via their Discord profile were unsuccessful, as their profile was unavailable. However, efforts to establish communication with the alleged perpetrator are ongoing, and updates will be provided as the situation develops.

META, Facebook and Data Breaches

META’s Facebook has previously made headlines for cybersecurity-related concerns. In April 2021, threat actors leaked the personal data of over 500 million users from 106 countries through web data scraping.

Similarly, in December 2019, hackers exposed the data of 267 million Facebook users on a hacker forum. This breach also stemmed from scraping activities and included users’ full names and email addresses.

In December 2019, another incident occurred where a thief stole unencrypted hard drives containing sensitive data belonging to 29,000 Facebook employees. The data was stored on hard drives within computer equipment owned by a payroll worker, which had been left in the worker’s vehicle.

Nevertheless, the latest alleged leak of the partial Facebook Marketplace database is another example how persistent cybercriminals have become. Facebook, along with alleged affected users, must take immediate steps to mitigate the impact of this breach and enhance security measures to prevent similar incidents in the future.

What’s Next for Users?

Here are five tips for Facebook Marketplace users to protect themselves in the aftermath of the alleged breach:

  • Change Passwords and Enable Two-Factor Authentication (2FA): While no passwords were leaked in this incident, users should immediately change their Facebook password and activate two-factor authentication (2FA) to enhance their account’s security. This precautionary measure is crucial, especially if threat actors attempt to exploit passwords obtained from previous data breaches leaked online.
  • Monitor Account Activity: Regularly monitor your Facebook account for any suspicious activity, such as unrecognized logins or changes to your account settings. Report any unauthorized activity to Facebook immediately.
  • Be Cautious of Phishing Attempts: Watch out for phishing emails, messages, or calls pretending to be from Facebook or other trusted sources. These may attempt to trick you into revealing sensitive information or clicking on malicious links. Avoid clicking on links from unfamiliar or suspicious sources.
  • Review Privacy Settings: Review and adjust your Facebook privacy settings to limit the visibility of your personal information. Consider restricting who can see your profile, contact information, and posts on the Marketplace to trusted individuals only. Additionally, consider locking your Facebook profile if the feature is available in your country.
  • Watch Out for Voice and SMS Phishing: Besides making sure your account is safe, keep an eye out for scams over the phone or through text messages, which we call vishing and smishing. Scammers might pretend to be someone you trust and try to get you to give away personal info. If you get a call or text asking for sensitive stuff like your bank details, be careful. Don’t click on any links or reply if you’re not sure who it’s from.

Stay tuned for further updates on this developing story.

Note: The authenticity of the leaked database and the identities of the individuals involved are subject to ongoing investigation.

  1. Hacker Leaks 800,000 Scraped Chess.com User Records
  2. Facebook glitch sent unintended friend requests to users
  3. Hackers phish 615,000 login credentials by using Facebook ads
  4. Facebook’s Official Page Hacked; Demand Release of PM Imran Khan
  5. Chinese firm leaked 200m Facebook, Instagram, LinkedIn users’ data

[ad_2]
Source link

Spoofing scam costs nurse her life savings; don’t let this happen to you

0
[ad_1]
Apple removed two unnamed apps from the App Store after a nurse named Avalon Grimes had her life savings of $24,000 stolen after she received a spoofed call that appeared to be from Chase Bank. The two apps violated App Store policies against hosting apps that help others make prank and anonymous calls. According to CBS News New York, the nurse received a phone call that showed up on her phone as coming from Chase, but she was being targeted by a scammer.

A nurse is tricked via a spoofed phone call into losing her life savings

As Grimes told CBS, “When I spoke with the police department they told me it’s something called ‘spoofing.’ They can use an app and they can mimic a number, and the number that showed up, the whole name that you would normally see when you would call Chase, that number showed up.” Records that were obtained from T-Mobile show that the number that called the nurse was the same number for Chase’s international services as the one listed on the back of her credit card.
Video Thumbnail

Grimes lost her life savings when she agreed to move her funds into another account on the advice of the person on the other end of the call whom she thought was her friendly Chase banker. “There shouldn’t be any sort of apps or any sort of ways to fake a number to make someone believe that it is a particular company,” Grimes said.

CBS News New York found multiple apps in the App Store that allow the user to spoof calls. One of the apps allowed CBS to spoof the Chase Bank phone number for free. CBS said that when it tested out the app, it even showed Chase Bank on the caller ID.

The developer of the app, Ayman Abdallah, said the app was created for entertainment and claimed that some numbers for banks, schools, and public safety agencies are banned from the app. Asked about the incident involving Nurse Grimes, Abdallah said, “Yes, that should not be allowed. Definitely, we’ll take responsibility and making sure to also ban international toll numbers.”

Follow these tips to avoid becoming a victim of a spoofing scam


The developer also said that scammers don’t use his app and put the blame on wireless carriers. “All these carriers need to collaborate together and also change these systems, but the question is why? Why do they leave it open?” Abdallah said.

To prevent this from happening to you, do not repeat to a caller any security code that has been texted to your phone. Nurse Grimes did and this helped the scammers get to her account. Don’t answer calls from a number you don’t recognize. If you do answer the call, hang up immediately. Do not press any buttons and do not divulge personal info such as your Social Security number, mother’s maiden name, credit card numbers, or any passwords.

Do not trust any caller until you are certain that you know who it is. And even then, Claire Rosenzweig of the Better Business Bureau says, “AI makes it much easier for scammers to spoof identities. They can even spoof someone’s voice.” She adds that if you get a call from a utility or government agency, “Take a moment, take a breath, step back, and contact the source. If they’re saying that it’s a utility company or a government entity, you call the source. You go to them ‘Have you been trying to reach me?'” Rosenzweig said.

While Chase is working with the bank that the scammer used to get Grimes’ money returned to her, it seems that the money has already been withdrawn leaving the nurse without her life savings and having to start all over again. While banks are required to reimburse customers who are the victims of fraud, this is not the case when the customer has been tricked into approving a fraudulent transaction.


[ad_2]
Source link