Banner Image

Happy New Year

First State Bank of Uvalde Holiday Hours-All locations-December 31st Closing at Noon. January 1st -Closed. Happy New Year.

Don't show again
Close Icon
Blog
Locations & Hours
Contact Us

Cyber News

HomeResourcesCyber News





IMPORTANT NOTICE: First State Bank of Uvalde will not initiate communication with customers by email, text message, or by telephone to inquire about recent transactions or request important personal information such as your name, account number, date of birth, social security number, card numbers, personal identification number (PIN) or security codes associated with your Debit Card, or your Online Banking User ID or password.
 
For more security tips visit our Security Tips Page!
 


 

Scam of the week 12/10/2025

This Phish Isn’t Very “Suite”

In this week’s scam, you receive a confirmation email for a hotel reservation. The email states that you need to confirm your reservation within 24 hours to avoid cancellation. It provides a link for you to select so that you can confirm your booking. If you’re traveling this holiday season, you may think the email is related to your travel plans.
However, this is actually a phishing scam! If you select the link in the email, you’ll be taken to a fake confirmation webpage that was created by cybercriminals. The confirmation page instructs you to enter your credit card number to secure your hotel reservation. But cybercriminals can steal any information that you enter here. Instead of booking your hotel, you’ll be giving your payment details directly to scammers!
Follow these tips to avoid falling victim to this phishing scam:
  • Scammers often create a sense of urgency to trick you into acting quickly. Remember, always think before you take action!
  • Legitimate travel sites won't ask you to confirm your booking with your payment information. Your payment details are usually collected when you book your travel plans, and not afterwards through confirmation emails.
  • Verify your booking confirmation directly on the official website or mobile app, rather than selecting links in an email you received.

Scam of the week 12/3/2025

A First-Class Ticket to Fraud

In this week’s scam, you’ve booked travel plans on an upcoming flight when you receive a text message. It appears to be from the airline’s support team and contains some alarming news: your flight has been canceled. The text urges you to select a link or call a phone number immediately to rebook your flight. The message looks official and even includes your real flight number, which might make you panic and try to fix the problem right away.
However, the text wasn’t sent by the airline, but by cybercriminals who are hoping to scare you into acting without thinking. If you select the link or call the number provided in the text, you won't be connected to the airline's customer service team. Instead, you will be connected to a scammer who will pretend to work for the airline. They will ask you for your financial information so they can “rebook” your flight. But if you give them your credit card number or personal details, they’ll steal your money and your identity!
Follow these tips to avoid falling victim to this scam:
  • Always verify flight changes through official sources. If you receive a text about a cancellation, go to the airline’s official app or website to check your flight’s status.
  • Never trust a link or phone number in an unexpected text message. If you need to contact an airline, call the customer service number in your booking confirmation email or on their official website.
  • Scammers use phrases like "act now" or "call immediately" to prompt you into making a rushed decision. Always stop and verify the information before you take action.

Scam of the week 11/26/2025

This Attachment Is Officially Phish-y

In this week’s scam, you receive an alarming email from the Social Security Administration, or SSA. The email has an urgent subject line that warns about an issue with your account and includes an attachment that looks like an official government letter. The letter claims that your Social Security number is linked to criminal activities and has been suspended. It provides a phone number for you to call immediately to avoid being prosecuted.
However, this email is a phishing scam, and the attached letter is a fake! If you call the number, a cybercriminal will answer and pretend to work for the SSA. They may even use the name of a real government employee to make their scam even more convincing. They will ask you for your personal information and money to “fix” the problem with your account. But there isn’t actually a problem with your account, and the scammer will steal any money or personal data that you give to them!
Follow these tips to avoid falling victim to this phishing scam:
  • Scammers often use official-looking attachments and a sense of urgency to make you act quickly. Real government organizations won’t pressure you to act immediately. Always stop and think before taking action!
  • Never trust a phone number listed in a suspicious email or attachment. If you’re concerned about your Social Security account, visit the official government website.
  • Never provide personal information or money to anyone who contacts you unexpectedly. Remember, the SSA will never ask you for money through a phone call, text, or email.
 

Scam of the week 11/19/2025

Don't Enroll in These Healthcare Scams

In this week's scam, you receive an unexpected message about enrolling in healthcare coverage. This message could be delivered through a phone call, email, or text message. No matter what type of message you receive, all of them appear to be from a healthcare agent who will claim that they can help you save money on your health insurance.
However, this message is actually a scam! The “healthcare agent” is really a cybercriminal who is trying to steal your personal information. They will ask you for details such as your Medicare ID number, Social Security number, and bank account information to appear as though they’re helping you. If you provide them with this information, they can steal your identity and your money!
Follow these tips to avoid falling victim to this scam:
  • You should never provide personal information to anyone who contacts you unexpectedly. Real healthcare agents will usually only contact you if you reach out to them first.
  • Be cautious of any unexpected calls, texts, or emails about your health benefits, even if they appear to come from a legitimate source.
  • Never select links in suspicious texts or emails. If you need to check your health benefits or enroll in a plan, visit the official websites directly.
 


Scam of the Week 11/12/2025

Appointment with a Phish

In this week’s scam, you receive an unexpected appointment confirmation email from the National Bank of Canada. Since the email is sent from the bank’s official email address, it appears to be completely safe. The email also alerts you to unusual activity in your account and provides a phone number for you to call to resolve the issue.
However, this is actually a clever scam. Cybercriminals visit the bank's actual website and complete the official "Contact Us" form. Then, they fill in the form with a fake tech support number and an alarming message about activity on your PayPal account. Once they complete the form with their false information, they receive an official appointment confirmation email from the bank, and then they send it to you. If you call the phone number in the email you receive, you'll be connected to a cybercriminal who will try to trick you into providing your personal information!
Follow these tips to avoid falling victim to this phishing scam:
  • This scam isn’t limited to banking institutions. Be cautious of any unexpected emails that instruct you to take immediate action, even if they appear to be from a trusted organization.
  • Never use the contact information in a suspicious email. Instead, visit the organization's official website directly to locate the customer support number.
  • Think before you click! Scammers can abuse real organizations’ web forms to send you fake messages.


Scam of the week 11/5/2025

Don’t Apply to This Phishing Scam

In this week’s scam, you receive an email that appears to be from Google Careers. The email looks like a message from a job recruiter asking if you’re open to discussing a new career opportunity with Google. The email contains a link, and if you select it, you’ll be taken to a web page where you are prompted to enter your name, business email address, and phone number to schedule a meeting.
However, the recruiting message you received is actually a phishing scam! The scheduling page is designed to look like a real Google Careers page, but it’s actually controlled by cybercriminals. If you enter your contact information on the page, you’ll be redirected to a fake login screen and instructed to log in to your Google account. If you enter your login information, you'll give your personal contact details and Google user credentials directly to the scammers!
Follow these tips to avoid falling victim to this phishing scam:
  • Scammers can create fake web pages that look exactly like real ones, so you shouldn’t trust a website based only on its appearance. Always make sure that you navigate to an organization’s official website before entering any user or contact information.
  • Always use caution when selecting links in unexpected emails, even if they appear to be legitimate. Cybercriminals often try to trick you into acting impulsively so that they can steal your personal data.
  • Remember, this type of phishing attack isn’t exclusive to Google Careers. Scammers could use this type of attack to impersonate any job recruitment site.


Scam of the week 10/29/2025

When Hello Means Goodbye to Your Money

In this week’s scam, you receive an unexpected text message from an unknown number. The text seems harmless at first, with a message like “Hey, how are you?” or “Are you coming to the BBQ later?” If you reply to the message, the sender will start a friendly conversation.
But this “friend” is actually a cybercriminal! After some casual conversation, they’ll start talking about a great investment opportunity in cryptocurrency or gold, and promise you can make big profits with no risk. They’ll tell you to invest in a specific website or app. But this opportunity isn’t real, and any money you send will go directly to the scammer. If you send your money through the website or app, the cybercriminal “friend” will disappear, and your money will be gone forever!
Follow these tips to avoid falling victim to this smishing, or SMS phishing, scam:
  • If you receive a text from a number you don’t know, don't reply. Replying to the message lets cybercriminals know that your phone number is active.
  • Be cautious of any promises of guaranteed profits or zero-risk returns. These are major red flags for scams.
  • Never send money, cryptocurrency, or gift cards to someone you haven’t met in person.


Scam of the Week 10/22/2025

A Phishing Net for Your Paycheck

In this week’s scam, you receive an email that appears to be from your organization’s human resources (HR) department. The email seems to be related to your compensation and benefits, and contains a link for you to click so that you can log in to your HR portal to find out more information. If you click the link, you’ll be taken to a login page.
However, the email you received is actually a phishing scam, and the login page is a fake page created by cybercriminals to trick you into entering your user information. If you enter your user credentials, scammers will steal this information and use it to log in to your organization’s real HR portal. Once the cybercriminals have gained access to your profile, they change your direct deposit information so that your paychecks will be sent directly to their bank accounts!
Follow these tips to avoid falling victim to this phishing scam:
  • Be cautious of any unexpected or urgent emails, even if they appear to be from HR. Scammers use fear and a sense of urgency to trick you into acting without thinking.
  • Never click links in an email to log into your work accounts. Instead, open a new window and log in to the official website.
  • Always follow your organization's procedures for reporting suspected phishing emails. Quick action helps protect your colleagues and your organization from cyberattacks.


Scam of the week 10/15/2025

The Phish in the Machine

This week’s scam involves a business email compromise, or BEC, attack, where cybercriminals access a real business email address and use it to send malicious emails. You receive an email that looks like a simple file-sharing notification, with an attachment that seems to be a PDF document. The email even comes from a legitimate business email address. Because it looks like the email is from a trusted source, you might be tempted to open it.
However, this is actually a phishing attack! Cybercriminals will use a compromised business email account to send you a malicious PDF attachment. If you open the PDF, you’ll be taken to a fake login page. To further trick you, this page may even first ask you to complete a fake security verification. But if you enter your user information on the login page, you’ll give it directly to cybercriminals!
Follow these tips to avoid falling victim to this BEC scam:
  • Be suspicious of attachments that redirect you to a website. If an attachment opens a web browser and asks you to log in, it's a major red flag that you're on a phishing site.
  • Never assume a security check on a login page means the site is safe. Cybercriminals add these features to their fake pages to make them seem more legitimate.
  • Remember, even if an email appears to be from a trusted source, you should always use caution before selecting links or opening attachments, especially if the email is unexpected. Always stop and think before taking action!

Scam of the week 10/08/2025

Something's Phishy in This AppSheet Message

In this week’s scam, you receive an email from Google AppSheet, a service used to build web and mobile applications. The email is from a legitimate AppSheet email address with an alarming subject line about a trademark violation notice. The email contains a link that directs you to a login page, where you are prompted to enter your username and password. The notice seems urgent, and you may be tempted to log in to resolve the issue.
However, this is actually a clever scam! Although the email is sent from a legitimate Google service, the message in the email is a phishing scam. Cybercriminals abuse the AppSheet platform to create and send these phony legal notices. Because the email comes from a trusted source, you might be less likely to realize that the email is malicious. However, if you select the link in the email and enter your username and password, cybercriminals can steal them immediately!
Follow these tips to avoid falling victim to this phishing scam:
  • Scammers often create a sense of panic to make you act without thinking. You should be suspicious of subject lines and messages that use threats or urgent demands.
  • Always check links before you select them. Hover your mouse over any link to view the real web address.
  • If you receive an unexpected or alarming email notice, don't select the links in the email. Instead, visit the organization's official website and use their contact information to reach out to them directly if you have concerns.


Scam of the week 9/10/2025

This Isn’t the Help Desk You're Looking For

In this week’s scam, you receive an unexpected call on Microsoft Teams, an app for voice calls, sending messages, and video chats. The call is from a user named “IT SUPPORT” or “Help Desk.” This user’s profile might even have a check mark emoji to make it look official. The caller claims there’s an urgent problem with your computer and that the IT department must fix it immediately.
However, the caller is a cybercriminal and not part of your organization’s IT department. They’re taking advantage of a default setting in Teams that allows users from outside your organization to contact you. If you answer the cybercriminal’s call, they’ll ask you to download software that allows them to access your computer. They can then take control of your computer to steal your passwords, install malware, and even access your organization's network!
Follow these tips to avoid falling victim to this scam:
  • Be suspicious of any unexpected calls from IT support. Verify the request is legitimate by contacting your organization’s IT department directly.
  • Don’t download any software at the request of someone from an unexpected online chat or call. Always stop and think before you select a link!
  • Never give screen-sharing access or remote control of your computer to someone you can't verify. Scammers often create a sense of urgency to rush you into making a mistake.


Scam of the week 8/27/2025
 

Spoiler Alert! This Job Isn’t Real

In this week’s scam, cybercriminals are targeting marketing professionals with a job opportunity that seems too good to be true. You receive an email that appears to be from Netflix’s HR department offering you a high-level marketing position. If you reply to this email, you will soon receive a second email that is sent from the “Netflix HR team.” This email contains a link for you to click so that you can schedule a job interview.
If you click the link, you’ll be taken to what appears to be a Netflix careers page and asked to create a “Career Profile.” You’ll be given the option to log in with your Facebook account to create the profile. However, this job opportunity isn’t real, and the emails you received were actually sent by cybercriminals. If you enter your Facebook login information, cybercriminals will steal it instantly and take control of your account!
Follow these tips to avoid falling for this phishing scam:
  • Before clicking a link, hover your mouse over it and carefully check the website's URL. Scammers often use addresses with small errors, like a missing letter or misspelling.
  • Think carefully about why a site is asking for your login information. A real organization like Netflix will not require you to log in to your personal Facebook account to schedule a job interview.
  • Be cautious of job offers that you didn’t apply for. If an opportunity seems too good to be true, it probably is.


Scam of the week 8/20/2025

 

Who Sent This Package? You Don't Want to Know

You may be familiar with QR codes. They are square black and white barcodes that you can scan with your phone’s camera to be instantly directed to a website or mobile app. Unfortunately, cybercriminals can use QR codes to their advantage. This scam begins when you receive a package in the mail that you weren’t expecting. There’s no return address or sender information, but a QR code is printed on the box.
However, the package, which contains an item of little to no value, is just a trick to get you to scan the code. It was sent by cybercriminals, and they hope you will be tempted to scan the code to find out where the package came from. If you scan the QR code, you’ll be taken to a fake website and asked to enter your personal information so that cybercriminals can steal it. The website could even secretly install malware on your device!
Follow these tips to avoid falling for this QR code scam:
  • Be suspicious of any package you receive that you didn’t order, especially if it has no sender information.
  • Never scan a QR code from a source you don’t recognize or trust. Cybercriminals can use them to send you to malicious websites.
  • Be careful about allowing websites and apps to access your phone’s data after scanning a code. Cybercriminals can use these websites and apps to steal your data or download malware to your device.


Scam of the week 8/13/2025

 

A Fine Way to Get Scammed

In this week’s scam, you receive a text message that appears to be from the Department of Motor Vehicles (DMV). The text states that you must pay a traffic fine by a certain date. If you don’t pay on time, your vehicle registration will be suspended, and you’ll lose your driving privileges. Some versions of the message even state that you’ll go to jail or your credit score will be affected if you don't pay.
The text message contains a link and instructs you to click it so that you can pay the fee. However, these messages aren’t sent by the DMV. They’re actually phishing texts (smishing) sent by cybercriminals. There was never an actual traffic fine or penalty. If you click the link in the text message and make a payment, your money will go directly into the cybercriminals’ pockets!
Follow these tips to avoid falling victim to a smishing scam:
  • Be cautious if you receive text messages claiming you must pay a fine immediately. Scammers often create a sense of urgency to trick you into acting impulsively.
  • The DMV wouldn’t ask you for personal information or money through a text message. If you have questions about paying a fine, contact your local DMV through its official website or phone number.
  • This scam targets users in the United States. However, cybercriminals can use these same tactics to try and trick users anywhere in the world. Always stop and think before you click!


 


Scam of the week 8/06/2025
 

Smishing in the Amazon

In this week's scam, you receive an unexpected text message that looks like it’s from Amazon. The message claims that an item you bought failed a “routine quality inspection” or has been recalled. The text offers you a full refund, and you don’t even need to return the item. You only have to tap a link in the text message to get your money back.
However, the refund offer is a trick, and the message is not actually from Amazon. This message is a text phishing scam that was sent to you by cybercriminals, also known as smishing. If you tap the link in the message, you will be directed to a fake website that looks exactly like Amazon's official site. This site will ask you to enter your account login information, payment details, and other personal data. If you enter any information here, the cybercriminals can steal your Amazon account and money!
Follow these tips to avoid falling victim to a smishing scam:
  • Never tap links in an unexpected text message. If you need to contact Amazon regarding a purchase, always navigate to their official website and use the contact information listed there.
  • Be cautious of any offer that promises a full refund without requiring you to return the item. Scammers use these “too good to be true” offers to make you act quickly without thinking.
  • Report suspicious texts using your phone’s “report junk” option, then delete the message.


Scam of the week 7/23/2025
 

This Job Doesn't Pass a Background Check

In this week's scam, cybercriminals are targeting job-seekers. Let’s say that you’re searching for work using a job site such as ZipRecruiter or LinkedIn. You come across a job posting that seems suspiciously good. The position appears to be with a well-known organization and offers a high salary for what seems to be an easy role. You apply, and within a day, you receive a follow-up email from a "hiring manager."
The hiring manager wants to meet with you and asks you to click a link so that you can confirm your direct deposit information before the interview. You are taken to a page that asks you for your credit card information, Social Security number, and home address. The catch is that the job you applied for was actually fake and posted by cybercriminals. If you enter any personal or financial information on the page, they will be able to steal it!
Follow these tips to avoid falling victim to a job scam:
  • Be suspicious of jobs with unusually high pay. If a salary seems too good to be true, it probably is.
  • Use extreme caution before providing any personal or financial information, until you are sure that the employer and job offer are legitimate.
  • Pay attention to the job recruiter's contact information. Scammers often use phone numbers or email addresses that aren’t affiliated with the organization they claim to work for.


Scam of the week 7/23/2025

Hidden Gems

In this week's scam, cybercriminals are using Google Workspace's Gemini AI tool to try to trick you in an unusual way. You receive an email that appears ordinary, and it doesn’t have any suspicious links or attachments. But if you ask Gemini to summarize it, the results seem alarming. Gemini’s summary of the email shows you urgent warnings about your password being compromised, along with a support number for you to call so that you can resolve the problem. However, this warning from Gemini is completely false!
Cybercriminals have hidden invisible text in the email. This text contains false information about your account being compromised, and it includes a fake support phone number for you to call. You can't see this hidden text, but Gemini can, and the AI tool uses this text when creating the summary. The result looks like a real security alert from Google. If you call the number provided, your call will be answered by a cybercriminal who will try to trick you into giving them your account’s login information!
Follow these tips to avoid falling victim to this AI-powered scam:
  • Don't trust urgent security alerts that show up in an AI-generated summary. Real Google security alerts won't appear in a Gemini summary.
  • Never call phone numbers that appear in an email or an AI summary, especially if the request seems urgent or unexpected.
  • Remember that AI tools like Gemini can be manipulated. If a summary shows urgent warnings or asks you to do something that wasn't clearly in the original email, it's probably a scam!
 

Scam of the week 7/16/2025


In this week's scam, cybercriminals are trying to trick you with PDFs that contain malicious content. You receive an email with a PDF attachment that appears to be from a major organization like Microsoft, DocuSign, or PayPal. The subject of the email seems alarming and makes it appear that you have an issue with your account. If you open the PDF attachment, it contains official logos and professional formatting. It appears legitimate, and the instructions direct you to call a customer service phone number.
But this PDF file is actually a phishing attempt. The phone number is fake, and if you call, a cybercriminal will answer and pretend to be a customer support representative. They will try to trick you into installing malware on your device. They will also try to manipulate you into giving them your user credentials or financial information so that they can solve the “problem” with your account. This type of scam can be very effective because you may be more likely to trust a voice over the phone, especially if they claim that they are trying to help you!
Follow these tips to avoid falling victim to a phishing scam:
  • Be suspicious of unexpected emails, especially those containing attachments. You should never open an attachment unless you are sure who sent it.
  • Be cautious when contacting an organization using information provided in an email. It's always safer to use the contact information listed on an organization's official website.
Remember that legitimate organizations rarely send urgent requests through PDF attachments. Cybercriminals will often attempt to create a sense of urgency to trick you into acting impulsively.


 

FCC Scam Alert 
 

What is 'Juice Jacking' and Tips to Avoid It

Planning to travel? No doubt you'll have your cell phone or another portable device, and you'll need to re-charge it at some point.

If your battery is running low, be aware that juicing up your electronic device at free USB port charging stations, such as those found in airports and hotel lobbies, might have unfortunate consequences. You could become a victim of "juice jacking," yet another cyber-theft tactic.

Cybersecurity experts warn that bad actors can load malware onto public USB charging stations to maliciously access electronic devices while they are being charged. Malware installed through a corrupted USB port can lock a device or export personal data and passwords directly to the perpetrator. Criminals can then use that information to access online accounts or sell it to other bad actors.

Although "juice jacking" has been demonstrated to be technically possible as a proof of concept, the FCC is not aware of any confirmed instances of it occurring.

Here are some tips to guard against "juice jacking:"

  • Using AC power outlets can help you avoid any potential risks, so be sure to pack AC, car chargers, and your own USB cables with you when traveling.
  • Carry an external battery.
  • Consider carrying a charging-only cable, which prevents data from sending or receiving while charging, from a trusted supplier.
  • If you plug your device into a USB port and a prompt appears asking you to select "share data" or “trust this computer” or “charge only,” always select “charge only.”

Public WiFi networks are another way that cyber criminals target travelers. To learn more about mobile phone and online security, check out the FCC consumer guide: Wireless Connections and Bluetooth Security Tips.



https://www.asurion.com/connect/tech-tips/what-is-juice-jacking-and-how-to-avoid-it/

 




Scam of the week 7/02/2025

A Fine Way to Get Scammed

In this week’s scam, you receive a text message that appears to be from the Department of Motor Vehicles (DMV). The text states that you must pay a traffic fine by a certain date. If you don’t pay on time, your vehicle registration will be suspended, and you’ll lose your driving privileges. Some versions of the message even state that you’ll go to jail or your credit score will be affected if you don't pay.
The text message contains a link and instructs you to click it so that you can pay the fee. However, these messages aren’t sent by the DMV. They’re actually phishing texts (smishing) sent by cybercriminals. There was never an actual traffic fine or penalty. If you click the link in the text message and make a payment, your money will go directly into the cybercriminals’ pockets!
Follow these tips to avoid falling victim to a smishing scam:
  • Be cautious if you receive text messages claiming you must pay a fine immediately. Scammers often create a sense of urgency to trick you into acting impulsively.
  • The DMV wouldn’t ask you for personal information or money through a text message. If you have questions about paying a fine, contact your local DMV through its official website or phone number.
  • This scam targets users in the United States. However, cybercriminals can use these same tactics to try and trick users anywhere in the world. Always stop and think before you click!






Scam of the week 6/25/2025

Don’t Sail with These Scammers

This week, cybercriminals are targeting travelers by using online advertisements as part of a scam, also known as “malvertising”. If you book an ocean cruise and have questions about your reservation, you probably search Google to find a customer service phone number. The top search result is a sponsored Google Ad that appears legitimate, and even contains a phone number.

If you call the number in the ad, you are connected to an “agent” who claims to have found a much cheaper deal for your trip. They offer to cancel and rebook it at the lower rate, but they will need your credit card number to secure the deal for you. However, this person doesn't work for the cruise line. The ad is fake, and the number you called connects you to a cybercriminal. They don’t actually want to help you with your travel plans, but they do want to steal your credit card number and money!

Follow these tips to avoid falling victim to a malvertising scam:
 

  • Beware of big discounts or prices that are suspiciously low. If a deal seems too good to be true, it probably is.
  • Remember that anyone can purchase Google Ads, including cybercriminals. Just because an ad looks official doesn’t mean it’s safe to click.
  • Always contact cruise lines directly through their websites and official phone numbers. If you’re new at booking travel, contact a reputable travel agent for help.




 
 
 

Roughly 16 billion passwords have leaked online, including from Google, Facebook and Apple

NEW YORK — Researchers at cybersecurity outlet Cybernews say that billions of login credentials have been leaked and compiled into datasets online, giving criminals “unprecedented access” to accounts consumers use each day.



Russian Threat Actor Uses Social Engineering to Compromise Google Accounts

Researchers at Google observed a Russian state-sponsored phishing campaign that attempted to compromise users' Google accounts by tricking them into handing over application-specific passwords. The attackers built trust by conversing with the victims before initiating the attack.
"In cooperation with external partners, Google Threat Intelligence Group (GTIG) observed a Russian state-sponsored cyber threat actor impersonating the U.S. Department of State," the researchers write.
"From at least April through early June 2025, this actor targeted prominent academics and critics of Russia, often using extensive rapport building and tailored lures to convince the target to set up application-specific passwords (ASPs). Once the target shares the ASP passcode, the attackers establish persistent access to the victim's mailbox."
ASPs are legitimate features included with Google accounts, but many users are unfamiliar with them and may inadvertently fall for this attack.
"Targets who responded received an email with a benign PDF lure attached. The State Department themed lure is customized to the target and contains instructions to securely access a fake Department of State cloud environment.
"This included directing victims to go to https://account[.]google[.]com and create an Application Specific Password (ASP) or 'app passwords.' ASPs are randomly generated 16-character passcodes that allow third-party applications to access your Google Account, intended for applications and devices that do not support features like 2-step verification (2SV). To use an ASP you must set it up and provide a name for the application."
Google notes that setting up an ASP isn't recommended and usually isn't necessary. Users should avoid this feature unless they know what they're doing, and you should be very suspicious if a third party asks you to set up one of these passwords.
"Users have complete control over their ASPs and may create or revoke them on demand," Google explains. "Upon creation, Google sends a notification to the corresponding account Gmail, recovery email address, and any device signed in with that Google account to ensure the user intended to enable this form of authentication."
KnowBe4 enables your workforce to make smarter security decisions every day. Over 70,000 organizations worldwide trust the KnowBe4 Human Risk Management platform to strengthen their security culture and reduce human risk.
Google has the story:
https://cloud.google.com/blog/topics/threat-intelligence/creative-phishing-academics-critics-of-russia
 


Europol Warns of Social Engineering Attacks

Social engineering remains a primary initial access vector for cybercriminals, according to a new report from Europol.
"Social engineering, which exploits human error to gain access to systems or personal information, stands out as a prominent technique used by criminal actors in this context," Europol says. "Initial Access Brokers (IABs) have been increasingly focused on using such techniques for the acquisition of valid account credentials as an entry point to the victims' systems.
"This initial access can then be leveraged in a multitude of ways by criminal actors. For example, access credentials for remote services are widely used by ransomware groups and their affiliates to compromise corporate networks, which can lead to data theft (exfiltration) and the deployment of ransomware."
The report also warns of a surge in infostealer malware, allowing criminals to gather information that can be used in future attacks.
"Phishing techniques are the main vector for the distribution of infostealers," Europol says. "Criminals use a variety of methods to achieve this, including sending emails, text messages, or messages on social media that contain malicious attachments or URLs which introduce malware into the victim's system.
"Malicious websites are also propagated through search engine advertising tools and search engine optimization (SEO) poisoning. In the latter case, criminals manipulate web search results to lead users to websites containing malware."
Europol also notes that AI tools have increased the effectiveness of social engineering attacks, enabling threat actors to easily generate convincing lures. "The efficacy of many of the aforementioned social engineering techniques has been improved by the wider adoption of LLMs and other forms of generative artificial intelligence (genAI)," the researchers write.
"Phishing texts and scripts, generated to incorporate the language and cultural nuances of the victims' location, can improve the efficacy of campaigns. Recent research on the topic indicates that phishing messages generated by LLMs have a significantly higher click-through rate than those likely written by humans."
Europol has the story:
https://www.europol.europa.eu/media-press/newsroom/news/steal-deal-repeat-cybercriminals-cash-in-your-data





 





 

Security Tips

Public Service Announcement
Regarding National Public Data breach

First State Bank of Uvalde was made aware of a nationwide data breach at National Public Data. Stolen data, including Social Security numbers and other Personally Identifiable Information (PII), was compromised. As a public service, we are advising our clients of this breach and possible actions to take. We recommend using extra caution with email and social media accounts and being aware of phishing attempts, which are efforts to obtain your personal information or access to accounts by misrepresenting the identity of the sender.

online security

We recommend that clients follow all recommended industry best practices for security and fraud prevention, including but not limited to the following:

  • Update antivirus protection: If you have not already done so, update your antivirus protection and perform security scans on all devices. If malware is found, most antivirus programs should be able to remove it, but you may need to seek reputable professional assistance in some cases.
  • Update passwords: Update passwords for bank accounts, email accounts, social media accounts, and other services used. Ensure your updated passwords are strong and unique for each account. Passwords should include uppercase and lowercase letters, numbers, and special characters whenever possible and should never include personal information that a hacker could guess or obtain from stolen data.
  • Use multifactor authentication: Enable multifactor authentication on any accounts or services that offer it to ensure proper identity verification.
  • Check credit reports: Regularly check your credit report and report any unauthorized use of credit cards. If you notice any suspicious activity, you can ask credit bureaus to freeze your credit.
  • Beware of phishing: The bank will never call, email or text requesting banking credentials of any kind.
  • Identity Protection: There are companies like LifeLock and Experian that can help monitor your credit and watch for identity theft.

In response to this nationwide breach, we may require additional security verification for anyone requesting account information by phone, email or text.

For further information regarding this nationwide breach, you may visit the links below.

For Credit Monitoring information, you may visit the links below.

Besides the monitoring sites, there is www.identitytheft.gov (FTC) for reporting and further advice. You can also call the identity theft hotline at 1-877-IDTHEFT

Fight Fraud & Identity Theft

man on laptop

Protect your Identity

We are committed to help you fight fraud and identity theft. Identity theft is the most popular and profitable form of consumer fraud. It occurs when someone uses your personal information such as your name, social security number, credit card number or other identifying information, without your permission, to commit fraud or other crimes.

If you feel you have been a victim of Identity Theft, please contact First State Bank of Uvalde or visit IdentityTheft.gov. To report scams or fraud, please contact First State Bank of Uvalde or visit ReportFraud.ftc.gov.
 

Monitor your accounts

Keep track of transactions on your accounts by logging in to FSB's Online Banking or Mobile Banking services. Our website is: www.fsbuvalde.com.

Consumer Awareness-Internet Safety Suggestions

  • Use a properly-configured firewall, whether on your PC and/or on your Internet router.
  • Keep your system patched, especially your web browser and any other program that interacts with your web browser.
  • Use current, auto-updating anti-virus and anti-spyware software.
  • Be careful about trusting websites, especially those that require you to enter personal information. A website can generally be easily "forged" and look just like the original. The "padlock" icon doesn't necessarily mean you are at the right website, just that you are at a website that is using encryption to protect your data over the Internet. Be wary of any website that uses numbers in the address (e.g., http://22.22.22.22/index.html>http://22.22.22.22/index.html versus http://www.mybank.com/index.html) or has a country identifier at the end of the domain (e.g., < http://www.mybank.cm/>www.mybank.cn or www.mybank.ru versus www.mybank.com ).
  • Be careful about clicking on links in email, they may be a trap. For example, links to legitimate, North American websites should never use IP addresses instead of names (e.g., http://22.22.22.22./index.html versus http://www.mybank.com/index.html) and should never end in a country identifier (e.g., www.mybank.cn or www.mybank.ru versus www.mybank.com).
  • Do not respond to any e-mail that seems threatening or that asks for personal information. We will never ask for personal information by email, or send links to customers via email that direct them to the bank’s website.
  • Generally speaking, do not use a public computer for anything that requires you to enter sensitive information, as it may be infected.

To Learn more about being safe online, visit the following link: https://www.staysafeonline.org/stay-safe-online/

Phishing

Phishing is when an attacker attempts to acquire information by masquerading as a trustworthy entity in an electronic communication. Phishing attacks are typically carried out through email, instant messaging, telephone calls, and text messages (SMS). Protect yourself from Phishing by not releasing personal information such as passwords and account numbers. First State Bank of Uvalde will NEVER contact you via phone or email to request this type of information. If you think that you may be a victim of Phishing or Identity Theft Fraud, contact us immediately at 830-278-6231 or send an email to FSBAcctServices@fsbuvalde.com.

Spoofing

Spoofing is the act of creating a fake website, email, etc. to mislead individuals into sharing sensitive information. Spoofs are typically made to look like they are legitimately published or sent by a trusted organization. Protect yourself from Spoofing by checking the web address (URL) of websites for slight variations in spelling or different domains. Do not click on links from non-trusted websites and if you are suspicious of a website, close it and contact the company directly.

Warning signs of potentially compromised computer systems

Anyone can be hacked. Here are some of the signs that you may have been hacked:

  • Browser Redirection
  • Anti-Virus reports infected file
  • Suspicious or unauthorized accounts/programs
  • System seems slow/sluggish
  • Passwords no longer work

Protect your personal information:

  • Do not carry your Social Security card in your wallet.
  • Do not have personal information such as your Social Security number and driver's license number printed on your checks.
  • Keep your unused checks in a safe place.
  • Do not leave your purse, wallet, checkbook, or any other forms of identification in your car.
  • Shred or tear up any documents containing banking or credit information, especially pre-approved credit offers, before you throw them away.
  • Keep your PINs and passwords a secret. Do not write them down or share them with anyone. In the event you need to write your PIN and password down, keep it in a safe place.
 

Debit MasterCard & ATM Safety Tips

  • Never allow anyone access to your secret PIN. Anyone that possesses your Debit MasterCard, or ATM card, can take money from your account at a variety of locations.
  • Never give out confidential information about your cards over the phone to anyone. Your bank already has the information and would never ask you to provide it over the phone. Phone scams are a growing problem nationally.
  • Block the view of others when you are using your cards at a store checkout.
  • Take another person with you when using outdoor ATMs or POS terminals at night.
  • When using outdoor ATMs or POS terminals, always observe your surroundings and leave if suspicious persons are nearby.
  • Treat your Debit MasterCard like cash. Always keep your card in a safe place. It's a good idea to store your card in a card sleeve. The sleeve protects the card's magnetic strip and helps ensure that the card functions properly.
  • If you receive cash back from a transaction, always put it away before leaving the location.
  • Be certain to retrieve your cards and review/retain your receipts before leaving a terminal. Do not abandon or discard your receipts where others can get them.
man with debit card
You are now leaving First State Bank of Uvalde
Continue