Spreadsheet Scam:

A Laramie citizen reported receiving an unexpected message with a spreadsheet attachment from a real estate agent they had not used in quite some time. The Laramie Board of REALTORS® also reported that this scam had been circulating throughout the community. Each person that clicked on the spreadsheet had their contacts stolen and potentially had malware installed on their computer. One person reported clicking the attachment, but their antivirus software successfully stopped the process. This same scam was spotted from a Big Horn School District on 2/26/26. It has switched industries and is propagating! CyberWyoming Note: Always verify unexpected attachments, even from known contacts, by confirming directly with the sender before opening, and ensure your antivirus and system updates are current to block potential malware. Never rely solely on trust, scammers often exploit familiarity to steal data.

Presidents Day Peril:

On Presidents Day, a Laramie organization reported that an encrypted email had been sent from an employee’s real email address. However, that employee was off work for the holiday. The organization employed an IT provider to investigate the incident and eradicate the problem. The email said “You have received a new secure message. Click here to read message. Please access this message before 2027-02-16 14:56 CST. For instructions and more information, click the “more info” link at the bottom of this message.” The message impersonated Proofpoint Email Encryption, a legitimate and widely used product. The link, however, directed recipients to Maegan[dot]gurucam[dot]com which had no affiliation with the organization or Proofpoint. CyberWyoming Note: Criminals often take advantage of holidays and good organizations that do their best to maintain security. Always verify unexpected message notifications with the sender directly before clicking links, especially during holidays when staff are away.

Vulnerabilities in Password Managers Could Allow Hackers to View and Change Passwords:

A recent study revealed serious vulnerabilities in four major cloud-based password managers, Bitwarden, LastPass, Dashlane, and 1Password, that could let attackers view and modify users’ stored passwords. These flaws could let hackers see and change all the passwords and sensitive data stored in a user’s vault. The researchers created 27 different ways to attack these services, targeting features like account recovery, vault encryption, sharing of passwords with teams, and older insecure encryption methods. The researchers disclosed their findings, prompting remediation efforts by Bitwarden, LastPass, and Dashlane, while 1Password noted its system already protects against many of these attacks because it uses an extra secret key along with the master password. Users are advised to make sure your vault is protected with strong passwords, use two-factor authentication, avoid insecure shared vaults, and confirm that the service really uses end-to-end encryption so that even the company storing your passwords cannot see them. Users should also ask their providers how they verify keys and protect against malicious servers, and whether the system ensures the entire vault cannot be tampered with.
– Brought to you by Infosecurity Magazine & CISA Region 8
‍www.infosecurity-magazine.com/news/vulnerabilities-password-managers/

FBI Warns of Impersonation Scams:

The FBI and AARP warn of a rise in scams where criminals impersonate government officials, often using AI to make their communications appear convincing. These impostors may claim there’s a warrant for your arrest or that your identity was used in serious crimes, pressuring you to transfer money or keep the situation secret. Scammers can spoof phone numbers, use real agent names, and appear highly professional, but their goal is always to steal money or personal information. Officials will never ask for payment or personal info out of the blue. If contacted, verify through official channels, avoid sharing information, and report scams to the AARP Fraud Watch Network or IdentityTheft.gov.
– Brought to you by AARP Fraud Network
www.aarp.org/money/scams-fraud/sms-text-alerts.html

Cybersecurity for Small Businesses:

Cybersecurity is no longer optional for small businesses, which are increasingly targeted by hackers due to lean teams, limited budgets, and connections to larger networks. Most attacks exploit simple vulnerabilities like phishing emails, reused passwords, or unpatched software rather than sophisticated hacking. Key defenses include multi-factor authentication, strong unique passwords, software updates, and employee training to recognize threats. Businesses should identify and secure critical data, create a response plan, and act quickly if breached. For personal protection, changing passwords, using password managers, freezing credit, and monitoring accounts help mitigate risks. Overall, cybersecurity is an ongoing habit and mindset focused on preparedness, not panic.
– Brought to you by Clearance Jobs
‍news.clearancejobs.com/2026/02/13/cybersecurity-for-small-businesses-protect-your-company-and-yourself/

Interested in cybersecurity business training?

The Made Safe™ Cybersecurity Training Program is a one-on-one program designed specifically for micro-businesses to reduce cyber risk and relieve anxiety around cybersecurity. Thanks to CyberWyoming’s members and sponsors, scholarships are available for Wyoming companies. Learn more at cyberwyoming.org/cyber-training/ or email info@cyberwyoming.org.

MS-ISAC and CISA Patch Now Alert:

The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for Cisco Catalyst SD-WAN Products. If you use this product, make sure the software (or firmware) is updated.

Data Breaches in the News:

IDMerit, Alpine Lumber, Wynn Resorts, and PayPal. Note: If you have an account with these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax.

Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors.

‍Other ways to report a scam:

• Better Business Bureau Scam Tracker: bbb.org/scamtracker/us/reportscam
• Wyoming Attorney General’s Office, Consumer Protection
  • Email ag.consumer@wyo.gov
  • Complaint form attorneygeneral.wyo.gov/law-office-division/consumer-protection-and-antitrust-unit/consumer-complaints

• File a complaint with the Federal Trade Commission at reportfraud.ftc.gov
• Get steps to help at www.IdentityTheft.gov
• Report your scam to the FBI at www.ic3.gov/complaint
• Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at donotcall.gov/report.html or call 1-888-382-1222, option 3
• Office of the Inspector General: oig.ssa.gov
• If you believe someone is using your Social Security number, contact the Social Security Administration’s (SSA) fraud hotline at 1-800-269-0271.
• AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360
• IRS: report email scams impersonating the IRS to phishing@irs.gov
• Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398
• Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register