A Healthy Dose of Suspicion:

A Laramie business received a suspicious email from a long, unusually formatted sender address with an @amazing750 email domain and the subject line “Payment Advice Ref ID:198090981.” The email, claiming to be from Linh Atkins, an administrator at Amazing Health Services, included a message about outgoing payments and a hidden hyperlink labeled “EFT-Lowry Outgoing Payments 22492” that led to a Canva page. Thankfully, the recipient did not click or respond, immediately recognizing several red flags, including the fact that they do not do business with Amazing Health Services. CyberWyoming Note: Investigation revealed that while Amazing Health Services is an existing Texas home health care company, the sender’s identity did not match the company, and the hyperlink’s destination was highly unusual. Such links leading to Canva could be used by attackers to host fake invoices, redirect to phishing login pages, or disguise malicious downloads. Always verify the sender’s identity and avoid clicking links or downloading attachments from unexpected emails, especially when they involve financial requests.

Uninsured Clicks from Liberty Mutual Scam:

A citizen reported a suspected phishing email impersonating Liberty Mutual. The sender name was “LlBertyMutual” (using a misleading spelling), and the email address had the domain @campaign.tumi.hackerstip, which is not associated with Liberty Mutual. The subject line read “Check lNsurance OFF your to-do list with Liberty Mutual.” The email included a hyperlink labeled “Get true satisfaction with Liberty Mutual,” which redirected to a third-party email marketing platform using the domain klclick3. It also contained a linked image designed to look like a legitimate Liberty Mutual promotional email, advertising insurance savings and discounts and prompting users to “Get my customized quote.” Additional red flags included a phone number that does not belong to Liberty Mutual and an unsubscribe link embedded in the message. CyberWyoming Note: Do not click any links or images in unsolicited insurance emails, especially when the sender or contact information doesn’t match the company’s official website. Instead, go directly to the company’s official site or contact them using a verified phone number to confirm legitimacy.

How to Create a Safer Dating Profile to Protect Your Information:

Creating a safer dating profile is about reclaiming control, protecting your privacy, and expressing yourself authentically without oversharing. Start by using a fresh, neutral email dedicated to dating to separate personal and financial information. Protect your images by avoiding identifiable locations or reused social media photos, and take new, simple photos if possible. Write a bio that reflects your personality without revealing personal details like your exact location or workplace. Set boundaries early by keeping conversations on the app and avoiding sharing sensitive information or linking social media. Trust your instincts, verify profiles when needed, and watch for red flags like rushed affection or financial requests. Ultimately, a secure profile allows you to navigate online dating confidently, demonstrating self-respect while remaining open to genuine connections.
– Brought to you by FightCybercrime.org
‍fightcybercrime.org/blog/how-to-create-a-safer-dating-profile-to-protect-your-information/

Rapid AI Adoption Causes Major Cyber Risk Visibility Gaps:

A recent Panorays survey highlights a growing cyber risk gap as enterprises rapidly adopt AI tools. While organizations are increasingly aware of third-party software vulnerabilities, the widespread use of AI chatbots and agents is exposing them to new, poorly understood threats. The survey of 200 U.S. CISOs found that 60% view AI vendors as uniquely risky, yet only 22% have formal processes for vetting them. Most AI tools are closed-source (proprietary), making it difficult to audit how data is processed, and employees often lack awareness of the risks of sharing sensitive information. Despite these dangers, many organizations apply the same onboarding practices used for traditional software, leaving 83% of CISOs with limited visibility into third-party vulnerabilities. The report notes that larger companies are beginning to implement AI-specific policies, but overall, adoption is outpacing security measures, forcing CISOs to urgently balance productivity gains with robust data protection.
– Brought to you by HackRead
hackread.com/survey-rapid-ai-adoption-cyber-risk-visibility-gaps/

Marquis Blames Hack At Firewall Provider Sonicwall For Its Data Breach:

Fintech firm Marquis is blaming its firewall provider, SonicWall, for a ransomware attack in August 2025 that compromised customers’ personal and financial data. Marquis claims that hackers exploited credentials obtained during an earlier SonicWall breach, which exposed firewall configuration files stored in the provider’s cloud, to bypass its defenses. The company’s third-party investigation found that the breach was linked to SonicWall’s earlier security incident, rather than a patch Marquis had failed to implement. Marquis is considering seeking compensation from SonicWall for costs incurred in responding to the attack. SonicWall, while acknowledging its prior breach affected all customers using cloud backups, has asked Marquis for evidence linking the incident to the ransomware attack and stated it has no new proof of a direct connection. Marquis has notified hundreds of thousands of affected individuals, though the full scope is still being determined.
– Brought to you by TechCrunch
techcrunch.com/2026/01/29/fintech-firm-marquis-blames-hack-at-firewall-provider-sonicwall-for-its-data-breach/

MS-ISAC and CISA Patch Now Alert:

The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for Ivanti Endpoint Manager Mobile. If you use this product, make sure the software (or firmware) is updated.

Data Breaches in the News:

Panera Bread, Canada Computers & Electronics, Match Group, Iron Mountain, and CarMax. Note: If you have an account with these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax.

Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors.

‍Other ways to report a scam:

• Better Business Bureau Scam Tracker: bbb.org/scamtracker/us/reportscam
• Wyoming Attorney General’s Office, Consumer Protection
  • Email ag.consumer@wyo.gov
  • Complaint form attorneygeneral.wyo.gov/law-office-division/consumer-protection-and-antitrust-unit/consumer-complaints

• File a complaint with the Federal Trade Commission at reportfraud.ftc.gov
• Get steps to help at www.IdentityTheft.gov
• Report your scam to the FBI at www.ic3.gov/complaint
• Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at donotcall.gov/report.html or call 1-888-382-1222, option 3
• Office of the Inspector General: oig.ssa.gov
• If you believe someone is using your Social Security number, contact the Social Security Administration’s (SSA) fraud hotline at 1-800-269-0271.
• AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360
• IRS: report email scams impersonating the IRS to phishing@irs.gov
• Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398
• Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register