Spoofed School’s Shared Document:

A Laramie business received an email appearing to come from a Big Horn County School District #1 email address, claiming a “shared document” was sent via a secure message link. The email included a link to a telegraph encryption site. Suspicious, the reporter contacted Big Horn County School District #1 directly, and they confirmed the email was not legitimate, suggesting that the sender’s domain may have been spoofed or their email compromised, with the message potentially sent to many contacts. CyberWyoming Note: Always verify suspicious emails that include links or attachments by contacting the sender directly through a known, trusted method. Avoid clicking on links in these messages, as they may lead to email compromise or malware downloads.

Student Project or Phishing Plot:

A Wyoming organization reported a scam involving someone claiming to be “Mary Watson,” a volunteer teacher from Laramie running an after-school program called iLearning Camp. The scammer emailed the organization asking them to link to a student “LLC formation guide” on their website, presenting it as a helpful resource for aspiring entrepreneurs. The reporter found this suspicious and did not click any links or reply. CyberWyoming Note: We investigated further which revealed multiple red flags. The Wyoming Afterschool Alliance had no knowledge of Mary Watson or iLearning Camp, the ilearnerscamp[dot]com domain is inactive, and the Laramie address in the email belongs to the Wyoming Community Foundation, whose staff confirmed no association with her or the after-school program. The request appears to be a classic backlinking scam intended to increase credibility. If you receive a similar email, do not click on any links or reply. Verify the sender’s identity independently by checking official organizational contacts and be cautious of unsolicited requests for backlinks, personal information, or business promotions, as these are common tactics in phishing and scam campaigns.

Spam Bot Activity Reported on WyoGives Platform:

The Wyoming Nonprofit Network recently sent out an alert to organizations about a known issue on the WyoGives platform in which spam bots have been creating fake peer-to-peer fundraiser profiles using false names and email addresses. No donor data has been compromised, and the fraudulent profiles do not have access to sensitive information. GiveGab is removing the fake accounts and has deployed a partial fix, with Bonterra’s IT team now working on a more permanent solution. Users are reminded that official GiveGab emails only come from notifications@givegab.com, to verify any access requests before approving them, and to report suspicious profiles or emails to support@givegab.com or info@wynonprofit.org.

Urgent Apple Security Updates Released:

Apple has released important updates for iPhones, iPads, Macs, Apple Watches, Apple TVs, and Safari to fix a serious security flaw (CVE-2026-20700) that hackers are actively using. This flaw could let attackers run any code on your device, potentially installing spyware or other malicious software without you noticing. It affects devices running versions before iOS 26.3, macOS Tahoe 26.3, watchOS 26.3, tvOS 26.3, and visionOS 26.3. Users are strongly advised to install updates immediately using the standard Software Update process on their devices to protect personal information, and to follow best practices like avoiding untrusted links, restarting devices regularly, and considering Lockdown Mode for extra security.
– Brought to you by MalwareBytes
www.malwarebytes.com/blog/news/2026/02/apple-patches-zero-day-flaw-that-could-let-attackers-take-control-of-devices

Cloned Law Firm Websites in AI-Powered Scam Campaign:

Security firm Sygnia discovered a big AI-driven scam using over 150 fake law firm websites that mimic real firms to target people who have already fallen for fraud. The scammers hide their tracks using multiple registrars, rotating IPs, unique SSL certificates, and Cloudflare, making the sites hard to shut down. Some phone numbers used in these scams link back to older fraud campaigns, though it’s unclear if the same group is behind everything. Researchers warn that AI is lowering the barrier to entry for cybercrime, enabling large-scale, convincing fraud operations. Businesses and individuals should be cautious, check for shallow or incomplete sites, and verify legitimacy before sharing personal information or sending money.
– Brought to you by Security Week
‍www.securityweek.com/researchers-expose-network-of-150-cloned-law-firm-websites-in-ai-powered-scam-campaign/

Interested in cybersecurity business training?

The Made Safe™ Cybersecurity Training Program is a one-on one program designed specifically for micro-businesses to reduce cyber risk and relieve anxiety around cybersecurity. Thanks to CyberWyoming’s members and sponsors, scholarships are available for Wyoming companies. Learn more at cyberwyoming.org/cyber-training/ or email info@cyberwyoming.org.

MS-ISAC and CISA Patch Now Alert:

The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for Google Chrome and Dell RecoverPoint for Virtual Machines. If you use these products, make sure the software (or firmware) is updated.

Data Breaches in the News:

Figure Technology, Odido, and Triad Radiology Associates. Note: If you have an account with these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax.

Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors.

‍Other ways to report a scam:

• Better Business Bureau Scam Tracker: bbb.org/scamtracker/us/reportscam
• Wyoming Attorney General’s Office, Consumer Protection
  • Email ag.consumer@wyo.gov
  • Complaint form attorneygeneral.wyo.gov/law-office-division/consumer-protection-and-antitrust-unit/consumer-complaints

• File a complaint with the Federal Trade Commission at reportfraud.ftc.gov
• Get steps to help at www.IdentityTheft.gov
• Report your scam to the FBI at www.ic3.gov/complaint
• Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at donotcall.gov/report.html or call 1-888-382-1222, option 3
• Office of the Inspector General: oig.ssa.gov
• If you believe someone is using your Social Security number, contact the Social Security Administration’s (SSA) fraud hotline at 1-800-269-0271.
• AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360
• IRS: report email scams impersonating the IRS to phishing@irs.gov
• Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398
• Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register