David H. Lipman

Alert Number: I-041224-PSA April 12, 2024 Smishing Scam Regarding Debt for Road Toll Services The texts claim the recipient owes money for unpaid tolls and contain almost identical language. The "outstanding toll amount" is similar among the complaints reported to the IC3. However, the link provided within the text is created to impersonate the state's toll service name, and phone numbers appear to change between states. If you receive one of these texts, the following is suggested: File a complaint with the IC3, www.ic3.gov, be sure to include: The phone number from where the text originated. The website listed within the text Check your account using the toll service's legitimate website. Contact the toll service's customer service phone number. Delete any smishing texts received. If you clicked any link or provided your information, take efforts to secure your personal information and financial accounts. Dispute any unfamiliar charges. 1Definition for Smishing: A social engineering attack using fake text messages to trick people into downloading malware, sharing sensitive information, or sending money to cybercriminals. "Smishing" combines "SMS"—or "short message service," and "phishing." "Phishing" generally pertains to attacks on the internet, email, or websites. ↩

PING @TeMerc

FTC Sends Refunds to Former AT&T Wireless Customers Who Were Subject to Data Throttling

Mental health company Cerebral failed to protect sensitive personal data, must pay $7 million Posted: April 18, 2024 by Pieter Arntz Proposed FTC Order will Prohibit Telehealth Firm Cerebral from Using or Disclosing Sensitive Data for Advertising Purposes, and Require it to Pay $7 Million

Please define what you "think" is a "virus". I request that because all viruses are malware but not all malware are viruses. Just like all Ford cars are automobiles but not all automobiles are made by Ford. There is a taxonomy to malware classification. A true virus will find it hard to evade detection because by definition a virus self replicates that is it is able to spread from file to file or PC to PC autonomously. That action alone means it can and will be detected. Additionally, viruses are relegated to a very small fraction of the malware arena. Those that exist are old and well detected. It is very rare for a new virus to emerge. Trojans are another sub-type of malware and they can hide and evade detection by being stealthy and and not making themselves known by such actions as beaconing (aka; Phoning Home) or reaching out to a Command and Control (C2) puppeteer. Malware that does this is known as a Zero Day. The subject matter is complicated but Malwarebytes has always targeted Zero Day malware. References: https://www.malwarebytes.com/zero-day https://www.checkpoint.com/cyber-hub/threat-prevention/what-is-zero-day-attack/what-is-zero-day-malware/ https://en.wikipedia.org/wiki/Zero-day_vulnerability

Please update your Browser Guard. I see no block. Support --> Check for database updates If it is still blocked Clear the Browser guard storage Support --> Clear Browser Guard storage

Please provide the website where said License was obtained.

Reference: TA558 group attacking legacy systems in LATAM ** Please read the full Advanced Persistent Threat (APT) TA558 adversary

New SteganoAmor attacks use steganography to target 320 orgs globally

Would you like a Forum Helper to help verify that the PC is now clean ?

Thank You. Please post a Log and/or ScreenShot showing Malwarebytes blocking the website whose Domain has not been provided.

Thank you However it is not a Phish. It is a Legitimate Malwarebytes' Newsletter email. e.malwarebytes.com is a legitimate sub-domain of Malwarebytes. EDIT: I do suggest you check if your email address(s) are part of a Breach. Here is a start; https://haveibeenpwned.com/

Please repost the attachment. It was lost in an accidental double-post.

I'm very happy you now have an updated version of Malwarebytes that is fully supported. Best 'O Luck !