Open Forum

All Communities
 View Only
  • 1.  Security BUZZ - The Phishing Threat You Didn't See Coming

    Posted 20 days ago

    In the digital age, our lives are increasingly managed online, and with that comes the need for heightened security. Password managers have become our digital vaults, promising to keep our countless passwords safe under the watch of one master key. But what happens when that master key falls into the wrong hands?

    Be on high alert: CryptoChameleon is a highly sophisticated and alarming phishing campaign currently targeting LastPass users. This meticulously planned and executed operation has already impacted at least eight individuals, with potentially more unsuspecting victims.

    The con begins with a phone call from an 888 number, seemingly from LastPass, alerting customers to unauthorized access attempts. A robocall informs the customer that their account has been accessed from a new device. It then prompts them to press "1" to allow access or "2" to block it. After pressing "2," they're told that they'll receive a call shortly from a customer service representative to "close the ticket."

    Here's how the deception unfolds. The recipient receives a call, seemingly from LastPass, but it's actually from a spoofed number. On the other end is a live person, often with an American accent or sometimes a British one. This supposed support agent informs the user that they'll be sending an email shortly, allowing the user to reset access to their account. This malicious email contains a shortened URL, directing them to a phishing site. The helpful support agent watches in real-time as the user enters their master password into the copycat site. Then, they use it to log into their account and immediately change the primary phone number, email address, and master password, thereby locking the victim out for good.

    This attack reminds us that even the most fortified systems can be infiltrated with a well-crafted deception. The CryptoChameleon doesn't rely on technological exploits; it manipulates our trust in customer service and our inclination to believe what we hear from seemingly legitimate sources, a well-known social engineering tactic.

    So, what can we do to protect ourselves? 

    • Be skeptical of unsolicited calls, especially those asking for sensitive information. Verify the caller's identity by contacting the company directly using a trusted number; we can stay one step ahead. And remember, no reputable company will ask for your master password over the phone.

    LastPass reminding customers:

    • Ignore any unsolicited or unprompted incoming phone calls (automated or with a live individual) or texts claiming to be from LastPass related to a recent attempt to change your password and account information. These are part of an ongoing phishing campaign. 
    • If you see this activity and are concerned you may have been compromised, contact the company at abuse@lastpass.com.
    • And finally, LastPass will never ask you for your password.

    #ALTACyber



    ------------------------------
    Genady Vishnevetsky
    Chief Info Security Officer
    Stewart Title Guaranty Company
    Houston TX
    ------------------------------
    ALTA Marketplace


  • 2.  RE: Security BUZZ - The Phishing Threat You Didn't See Coming

    Posted 20 days ago

    Genady,

     

    Thank you for your informative and excellent posts!  Criminals Enterprises are working 24/7 to refine their attacks. We fail to recognize this trend and anticipate their attacks at our peril.

     

    Please continue to post! 

     

    David

     

     

     

     

     

     

     



    David Tandy
    Chief Executive OfficerTexas National Title
     www.TexasNationalTitle.com
    Experts You Need, Partners You Can Trust
    2705 Bee Cave Road, Suite 150
    Austin
    TX
    78746
    Phone: 512.381.9910
    Facebook
    LinkedIn
    Twitter
    Be Aware! Wire fraud is on the rise. To learn more, click here.
    For Directions to our office and to see important information for closing click here.
    For Earnest Money delivery, consider using ZOCCAM. Click here for details.


    From: Genady Vishnevetsky via American Land Title Association. <Mail@ConnectedCommunity.org>
    Sent: Friday, May 3, 2024 8:29 AM
    To: David Tandy <David.Tandy@texasnationaltitle.com>
    Subject: Open Forum : Security BUZZ - The Phishing Threat You Didn't See Coming

     

    In the digital age, our lives are increasingly managed online, and with that comes the need for heightened security. Password managers have become... -posted to the "Open Forum" community




    ALTA Marketplace


  • 3.  RE: Security BUZZ - The Phishing Threat You Didn't See Coming

    Posted 17 days ago

    Genady,

    I agree with David - thank you for posting these!

    While this scam seems to be targeting LastPass users, the same concepts apply to any password managers (or any credentials).

    In addition to your suggestions, to protect ourselves, we should all add 2FA for our password managers. The data held by a password manager is too sensitive to protect with only a password.

    Best,

    Andy



    ------------------------------
    Andy White
    CEO
    Closinglock
    Austin TX
    +1 (512) 434-0075
    ------------------------------

    ALTA Marketplace


  • 4.  RE: Security BUZZ - The Phishing Threat You Didn't See Coming

    Posted 17 days ago

    Very interesting!  Great description!  Thank you!

     

    Arthur Schwartz

    Actuary

    Actuarial Services / Financial Solvency Division

    Louisiana Department of Insurance

    1702 N. Third St (70802)

    P. O. Box 94214, Baton Rouge, LA 70804-9214

    P:225-342-7639

    Arthur.schwartz@ldi.la.gov | https://ldi.la.gov

     

     

    CONFIDENTIALITY NOTICE: This message and any attachments are intended only for the use of the addressee. The message may contain confidential, proprietary, privileged, and/or private information exempt from disclosure under federal and/or state law. If the reader of the message is not the intended recipient or an authorized representative of the intended recipient, you are hereby notified that any disclosure, reproduction, distribution, or other use of this message or any attachments is prohibited. If you are not the addressee, please promptly delete this message and notify the sender of the delivery error by reply e-mail.

     

     




    ALTA Marketplace


  • 5.  RE: Security BUZZ - The Phishing Threat You Didn't See Coming

    Posted 14 days ago

    Genady:

    We have been in business for almost 20 years, as a tax firm, we have a lot of sensitive information about all our clients,  we had NEVER received so many phishing emails until we began working with the title industry, every scam email we receive is pretending to be from a title company, we have extreme IT security in place as well and many scam emails still make it to our inbox, it is alarming the level of sophistication of the criminals and the attack the title industry is under.

    Thank you for all your work and dedication, I really enjoy your information.



    ------------------------------
    Mary Enzi CAA
    Tax Solutions – FIRPTA Consulting
    mary.santiago@taxss.com
    +1 (281) 578-1040
    Barker TX
    ------------------------------

    ALTA Marketplace