Cyber Vigilance Update

Today’s Connection

Cyber Engage Update - 29/03/2023 (#23)

Office Alert

when push comes to shove ...

Beware Rising Browser push notification scams

Browser push notifications are a common browser feature that allow websites to send you push notifications.

They can be very handy so of course scammers and criminals have found a way to exploit them. Essentially you are tricked into enabling them so they can then exploit you.

How do these scam notifications work?

  • You can be lured into enabling browser pish notifications while online, usually to access some form of apparent legitimate content.
  • Once enabled, scammers trigger multiple push notifications intending to divert your attention and redirect you to fake scam websites.
  • Scammers will bombard you with notifications for fake crypto accounts, messages from fake dating sites and adverts for products that are all scams.

What can you do?

Ways to protect yourself from browser notification scams include:

  • Only visit trusted websites – Typically game and software activation websites will offer content they think you want to see. You might get caught up in a redirector chain, where scammers try to trick you into allowing push notifications to access their content. Make sure you are always visiting safe version of these sites only.
  • Think twice before you accept – Be wary of accepting any browser notifications in general, so always follow your instincts. Remember, if you don’t allow malicious sites to send any notifications at all, they can’t send you any unsolicited ones.
  • Never click on suspicious links – We know we say this one a lot. But it really works for almost all scams that you’ll come across, from phishing emails to malicious push notifications. They prey on the idea that you may be curious or busy enough to click through. But if you do not know the sender or the source, never click.

Home Alert

Keeping Social Safe

Protecting yourself from the trolls, creeps, and criminals lurking in the digital abyss!

Social media sites and apps are great ways to connect and share information. User profiles, timelines, social media status, friend lists, and message services grant your contacts insights into your day-to-day activities.

However, these sites can also provide cyber criminals with the critical information they need to disrupt your life and harm or harass you, your co-workers, or even your family members.

What can I do?

Practicing good operations security (OPSEC) and using simple countermeasures will minimise the risks that come from using social media and help you protect your critical information. These steps are recommended to follow to enable good security of your social media profile.

  • Identify Critical Information
  • Don’t post critical information
  • Lock down your privacy settings
  • Apply Countermeasures e.g. Firewalls, Anti-virus and Anti-Malware etc.
  • Update immediately and frequently review privacy settings
  • Protect your location data
  • Know your “friends”
  • Minimize pivoting to home and work networks
  • Be aware of your physical and virtual surroundings
  • Secure and strengthen your passwords
  • Monitor your cyber footprint
  • Report suspicious activities
  • Recognize social engineering tactics
  • Close the window into your private life

Remember - What you post on social media, even when that information is set for private audiences, could someday become public…


This week's Training module


Cyber Threat Reporting (1/1)

Cyber Security Vigilance Program

Version 16-11-2022

Cyber Security Vigilance