info@cyberwyoming.org
www.wyocan.org
www.cyberwyoming.org
307-223-1265, PO Box 2332, Laramie, WY 82073

File Not Found:

A Wyoming resident reported receiving a suspicious email from an unknown sender that appeared to be a Google Drive file-sharing notification. The email, sent from someone with a “digitford” email domain, had the subject line “Item shared with you: ‘[Reporter’s Name].[Reporter’s Work].pdf’” and stated that Madison Hughes had shared a file named “[Reporter’s Name].[Reporter’s Work].pdf” via Google Drive. The message included a link to open the file and standard Google Drive sharing language. The reporter did not recognize the sender and believed the message to be suspicious and potentially part of a phishing attempt. CyberWyoming Note: It is possible that the sender information belongs to a legitimate individual whose email address was spoofed, or whose account was compromised and is being used to distribute malicious content. Recipients should avoid clicking links, opening attachments, or granting access to files from unknown or unexpected senders. If a file-sharing request appears suspicious, independently verify its legitimacy by contacting the purported sender through a trusted communication method rather than responding to the email.

Boss-Level Bluff:

A Wyoming resident reported receiving a suspicious email from an external sender impersonating a high-ranking organizational official. The email, sent from a generic Gmail address rather than the official organization domain, had the subject line "[Reporter’s Name] Work Discussion" and explicitly used the real name of an executive in the signature line. The message vaguely requested that the recipient provide their preferred contact details to discuss a "work-related matter." The reporter recognized that the sender's actual email address did not match the executive's identity and flagged the message as a suspicious phishing and contact-harvesting attempt. CyberWyoming Note: This is a classic example of "boss impersonation." Scammers use the real names of managers or executives with generic email accounts to trick employees. Their goal is usually to move the conversation off official email channels onto text messages or phone calls. Once there, they can easily pressure staff into buying gift cards or making fraudulent money transfers. Always check the actual sender's email address, not just the name that pops up, and look out for warning banners that label emails as "external." If you get an unusual or urgent request from a supervisor asking for contact info, double-check its legitimacy by calling them directly or starting a brand-new email to their known, official address.

Wyoming Department of Health Warns Residents About Spoofing Calls:

The Wyoming Department of Health (WDH) issued an alert warning residents about a phone scam where scammers are "spoofing" official department phone numbers, specifically the primary line for the WDH Director's Office (307-777-7656). The callers falsely claim to be from an "investigative unit" or a pharmacy to solicit highly sensitive personal and financial data. WDH reminds the public that official representatives will never call to request credit/debit card numbers, gift cards, or social security numbers over the phone, and advises residents to hang up and verify callers independently.
– Brought to you by Wyoming Department of Health

Warning Signs of Romance Scams and How to Help Loved Ones:

Romance scams are sophisticated emotional manipulations where cybercriminals build trust over time using fake identities, AI-generated media, and constant communication to form strong emotional bonds with victims. Warning signs include rapid relationship escalation, isolation from friends and family, excessive phone use, and especially requests for money, cryptocurrency, or financial help through staged emergencies or fake investment opportunities. If you suspect a loved one is involved, it is important to approach them with empathy rather than confrontation, since victims often feel deeply attached and may become defensive. After a scam is revealed, support should focus on nonjudgmental listening, helping secure finances and accounts, encouraging reporting at the victim’s pace, and maintaining ongoing emotional support while also taking care of your own well-being.
– Brought to you by FightCybercrime.org
fightcybercrime.org/blog/how-to-recognize-warning-signs-of-a-loved-one-involved-in-a-romance-scam/

CISA Urges Hardening Fortinet Devices After Reports of Credential Exposure:

The Cybersecurity and Infrastructure Security Agency (CISA) has urged organizations to immediately secure their internet-accessible Fortinet devices following a massive global credential-harvesting campaign dubbed "FortiBleed." This campaign successfully exposed the usernames, email addresses, and plaintext passwords of nearly 74,000 firewall and VPN gateways across private and public sectors globally. Because the hackers rely on brute-force tactics and credential reuse rather than a software vulnerability, there is no patch; instead, CISA advises administrators to rotate all credentials, strictly enforce multi-factor authentication (MFA), and remove management interfaces from direct public internet exposure.
– Brought to you by CISA
www.cisa.gov/news-events/alerts/2026/06/18/cisa-urges-hardening-fortinet-devices-after-reports-credential-exposure

Interested in cybersecurity business training?

The Made Safe™ Cybersecurity Training Program is a one-on-one program designed specifically for micro-businesses to reduce cyber risk and relieve anxiety around cybersecurity. Thanks to CyberWyoming’s members and sponsors, scholarships are available for Wyoming companies. Learn more at cyberwyoming.org/cyber-training/ or email info@cyberwyoming.org.

MS-ISAC and CISA Patch Now Alert:

The Multi-State Information Sharing and Analysis Center (MS-ISAC) or the Cybersecurity & Infrastructure Security Agency (CISA) has published a patch now (update your software) alert for Google Chrome, Apple Beats Studio Buds, Adobe Products, Mozilla Products, and Ubiquiti UniFi OS. If you use any of these products, make sure the software (or firmware) is updated.

Data Breaches in the News:

Tata Electronics, LastPass, Department of Social and Health Services, and AssuranceAmerica. Note: If you have an account with these companies, be sure to change your password and consider placing a credit freeze on your accounts through the three credit reporting agencies: TransUnion, Experian, and Equifax.

Please report scams you may experience to phishing@cyberwyoming.org to alert your friends and neighbors.

Other ways to report a scam:

  • File a complaint with the Federal Trade Commission at reportfraud.ftc.gov
  • Get steps to help at www.IdentityTheft.gov
  • Report your scam to the FBI at www.ic3.gov/complaint
  • Reported unwanted calls to the Federal Trade Commission’s Do Not Call Registration. Online at donotcall.gov/report.html or call 1-888-382-1222, option 3
  • Office of the Inspector General: oig.ssa.gov
  • If you believe someone is using your Social Security number, contact the Social Security Administration’s (SSA) fraud hotline at 1-800-269-0271.
  • AARP Fraud Watch Network (any age welcome) Helpline 877-908-3360
  • IRS: report email scams impersonating the IRS to phishing@irs.gov
  • Call the Wyoming Senior Medicare Patrol (SMP) for assistance with potential Medicare fraud, abuse, or errors at 1 800 856-4398
  • Victim Support: The AARP Fraud Watch Network and Volunteers of America (VOA) created a new, free program to provide emotional support for people impacted by a scam or fraud, called ReST. Visit www.aarp.org/fraudsupport to learn more about the free program and register

Other Blogs