Fraudulent Amazon Recall:

A citizen reported receiving a fraudulent email impersonating the “Amazon Customer Safety Team.” The message claimed that an item from a January 2026 order was subject to a product recall and urged the recipient to stop using it and request a refund via a provided link. However, the link directed to a suspicious non-Amazon domain ending in “[dot]mom,” indicating it was not legitimate. The message also appeared to originate from India, further raising concerns. CyberWyoming Note: If you receive a similar message, do not click links or provide information from unsolicited emails especially if the URL is not from an official domain. Instead, verify recall notices by logging into your account directly through the official website or app.

Scare Tactics or Legit Copyright Claim:

A Wyoming business reported receiving odd emails from a sender "COPYTRACK," sent to two of the company's public email addresses. The messages, titled “Regarding your publication on [Reporter's Business Website],” alleged that the business might be using copyrighted images owned by a separate company without a license. They instructed the business to verify whether it held the proper license for the image in question, providing a case ID and a portal link for submission, and requested proof of authorization by April 4, 2026. The reporting business noted that it only uses images marked as CC0 Public Domain and are free for personal and commercial use with no attribution required. The business also reached out to its website designer, who confirmed that the image in question had been obtained through a stock photo subscription, meaning both they and the business have full rights to use it. CyberWyoming Note: Further investigation shows COPYTRACK is a legitimate German-based copyright enforcement company, not a scam. However, its aggressive, automated tactics often resemble phishing or extortion. COPYTRACK represents image owners to claim fees for unlicensed use, but low-quality control frequently causes false positives, targeting users who already have licenses or use public domain images. Their automated, high-pressure approach has earned a reputation for being dubious, though not illegal. If you receive a COPYTRACK email, first verify that you actually own or have a license for the image in question before responding. Never pay or provide personal information until you consult a legal professional and be sure to keep a record of all communications.

When Grief Becomes a Target:

Bereavement scams exploit grieving families by using personal information from obituaries, funeral homes, and online memorials to commit fraud or steal money. Common tactics include posing as funeral staff with payment issues, claiming to be distant relatives, or offering “spiritual” connections to the deceased. Scammers may also commit identity theft using the deceased’s information. To protect yourself, limit the personal details shared publicly, verify any unexpected calls with trusted sources, and never pay through wire transfers, gift cards, or cryptocurrency.
– Brought to you by AARP Fraud Network
‍www.aarp.org/money/scams-fraud/text-alerts.html

Your TV Is Secretly Watching You. Here's How to Stop It:

Smart TVs often track what you watch through a technology called Automated Content Recognition (ACR), which analyzes audio and video even from offline sources like DVDs to deliver targeted ads and recommendations. Unlike streaming services, which track viewing directly through your account or device, ACR monitors everything on your screen for digital fingerprints, making it more invasive. Most TVs enable ACR by default, but it can usually be disabled through privacy settings, although the option’s name and location vary by brand, such as Fire TV, LG, Samsung, Roku, Sony, and Vizio. As an example from the article, to deactivate it on LG TVs, go to Settings > General > System > Advanced Settings > turn off Live Plus. The article provides instructions for disabling ACR on all the other major brands listed as well.
– Brought to you by MSN
‍www.msn.com/en-us/news/news/content/ar-AA1Zl4NK

The Phone Call is the New Phishing Email:

In 2025, voice-based phishing, where attackers call employees or IT help desks to gain network access, became a major attack route, showing a shift from traditional email phishing. Mandiant’s M-Trends report noted that these attacks, often carried out by groups like The Com and Scattered Spider, accounted for 11% of incidents, while email phishing fell to just 6%. Exploited software vulnerabilities remained the most common initial access point at 32%, but the rise of targeted, skill-intensive voice phishing highlights the increasing sophistication of social engineering. Technology companies were the most targeted sector, and attackers are investing more effort into high-return, human-focused attacks that bypass conventional security defenses.
– Brought to you by CyberScoop & CISA Region 8
‍cyberscoop.com/social-engineering-surge-intrusion-vector-mandiant-m-trends/

Interested in cybersecurity business training?

The Made Safe™ Cybersecurity Training Program is a one-on-one program designed specifically for micro-businesses to reduce cyber risk and relieve anxiety around cybersecurity. Thanks to CyberWyoming’s members and sponsors, scholarships are available for Wyoming companies. Learn more at https://cyberwyoming.org/cyber-training/ or email info@cyberwyoming.org.

MS-ISAC and CISA Patch Now Alert:

The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for NetScaler ADC and NetScaler Gateway, F5 Products, Apple products, and Google Chrome. If you use any of these products, make sure the software (or firmware) is updated.

Data Breaches in the News:

Nordstrom, Hightower Holding, Infinite Campus, Kaplan, Lewis Drug, Mazda, Resolv DeFi, Trio-Tech, and Trivy Vulnerability Scanner. Note: If you have an account with these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax.

Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors.

‍Other ways to report a scam:

• Better Business Bureau Scam Tracker: bbb.org/scamtracker/us/reportscam
• Wyoming Attorney General’s Office, Consumer Protection
  • Email ag.consumer@wyo.gov
  • Complaint form attorneygeneral.wyo.gov/law-office-division/consumer-protection-and-antitrust-unit/consumer-complaints

• File a complaint with the Federal Trade Commission at reportfraud.ftc.gov
• Get steps to help at www.IdentityTheft.gov
• Report your scam to the FBI at www.ic3.gov/complaint
• Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at donotcall.gov/report.html or call 1-888-382-1222, option 3
• Office of the Inspector General: oig.ssa.gov
• If you believe someone is using your Social Security number, contact the Social Security Administration’s (SSA) fraud hotline at 1-800-269-0271.
• AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360
• IRS: report email scams impersonating the IRS to phishing@irs.gov
• Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398
• Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register