Secure Message Mortgage Scam:

A Wyoming business received a phishing email that impersonated legitimate mortgage companies, including Newrez. The email used the subject line “Requested Payoff Statement Received” and attempted to lure the recipient into clicking an “Access Message” button. The message instructed the user to create an account by entering their email, setting a password, and verifying the account via an emailed activation link. CyberWyoming Note: This process was designed to harvest login credentials and potentially gain access to the victim’s email or other accounts. If you receive a similar message, don’t click links or create accounts. Instead, verify any request directly using official contact information. Newrez has published fraud guidance emphasizing that they will never ask for passwords or sensitive information via email and advising users to report suspicious messages and confirm any unexpected communications before taking action.

Targeted by Fake Trademark Fees:

A Laramie business that recently filed a trademark received three separate mail solicitations from companies named ATP (Texas), MPO (Florida), and STP (New York). Each letter used the business’s trademarked logo and requested payment (ranging from about $1,340 to $1,580) for “trademark reproduction” or “publication” services, with instructions to pay by check or money order within 10 days. The business owner noted that the fees are for optional “trademark publishing” services, which are not related to the actual federal trademark application process, and concluded the letters are an attempt to trick new trademark filers into unnecessary payments. CyberWyoming Note: The “Trademark Reproduction Fee” notices are not official invoices from the United States Patent and Trademark Office (USPTO). If you receive letters like this, the USPTO advises verifying them through official .gov sources. Do not send payment or personal information. Legitimate USPTO fees are only listed on the USPTO website, and the agency does not demand payment via mail to third-party companies or use urgent payment threats in this way.

'Yes' Is All It Takes to Become a Victim:

The latest phone scam, known as the "Can you hear me?" scam, tricks people into saying "yes," which scammers can record and potentially use for unauthorized purchases or services. Typically targeting vacation packages, cruises, warranties, or other big-ticket items, the calls may come from a person or a recording, sometimes using personal information scammers already have. While no losses have been reported yet, authorities warn the scam could evolve with new questions. Experts advise ignoring calls from unknown numbers, never giving personal information, and reporting suspicious calls to the Better Business Bureau.
– Brought to you by Hawaii News Now & CISA Region 8
‍www.hawaiinewsnow.com/story/34383608/in-newest-phone-scam-yes-is-all-it-takes-to-become-a-victim/

New Undersea Cable Cutter Risks Internet’s Backbone:

A Chinese research ship has tested a deep-sea device capable of cutting submarine Internet cables at depths of over 3,500 meters, raising concerns about the vulnerability of global communications infrastructure. The tool, designed with a compact diamond-grinding mechanism, is intended by its developers for civilian marine work but is widely viewed as dual-use technology with potential military applications. Its demonstration comes amid increasing incidents of suspected damage to undersea cables worldwide, including in Europe and near Taiwan, some involving Chinese-registered vessels. Analysts warn that while many countries have similar capabilities, the development highlights growing risks to the vast network of subsea cables that carry most of the world’s Internet traffic and are critical to global connectivity.
– Brought to you by Ars Technica & CISA Region 8
arstechnica.com/gadgets/2026/04/china-tests-an-undersea-cable-cutter-as-suspected-sabotage-incidents-grow/

Recently Leaked Windows Zero-Days Now Exploited In Attacks:

Three newly discovered Windows security flaws are being actively used by hackers to take control of computers and gain high-level administrator access. A researcher publicly released proof-of-concept exploit code for the bugs after a dispute with Microsoft about how he issues were handled. Security researchers have already seen real attacks using all three flaws, including cases where attackers broke into systems using stolen VPN credentials and then operated directly inside the machines. Microsoft has fixed one of the issues (called BlueHammer), but the other two (RedSun and UnDefend) are still not fully patched. One of the unpatched bugs is especially serious because it can still be used to gain full control even on updated systems with Microsoft Defender enabled. Microsoft says it is working on fixes and prefers that security problems are reported and handled privately before being made public, but attackers are already taking advantage of the situation.
– Brought to you by Bleeping Computer & CISA Region 8
‍www.bleepingcomputer.com/news/security/recently-leaked-windows-zero-days-now-exploited-in-attacks/

Interested in cybersecurity business training?

The Made Safe™ Cybersecurity Training Program is a one-on-one program designed specifically for micro-businesses to reduce cyber risk and relieve anxiety around cybersecurity. Thanks to CyberWyoming’s members and sponsors, scholarships are available for Wyoming companies. Learn more at https://cyberwyoming.org/cyber-training/ or email info@cyberwyoming.org.

MS-ISAC and CISA Patch Now Alert:

The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for Mozilla products, Oracle products, and OpenSSH (Open Secdure Shell). If you use any of these products, make sure the software (or firmware) is updated.

Data Breaches in the News:

Udemy Inc., ADT Home Security, Itron, Medtronic, Carnival Corp., and Vimeo. Note: If you have an account with these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax.

Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors.

‍Other ways to report a scam:

• Better Business Bureau Scam Tracker: bbb.org/scamtracker/us/reportscam
• Wyoming Attorney General’s Office, Consumer Protection
  • Email ag.consumer@wyo.gov
  • Complaint form attorneygeneral.wyo.gov/law-office-division/consumer-protection-and-antitrust-unit/consumer-complaints

• File a complaint with the Federal Trade Commission at reportfraud.ftc.gov
• Get steps to help at www.IdentityTheft.gov
• Report your scam to the FBI at www.ic3.gov/complaint
• Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at donotcall.gov/report.html or call 1-888-382-1222, option 3
• Office of the Inspector General: oig.ssa.gov
• If you believe someone is using your Social Security number, contact the Social Security Administration’s (SSA) fraud hotline at 1-800-269-0271.
• AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360
• IRS: report email scams impersonating the IRS to phishing@irs.gov
• Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398
• Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register