the letters "ITW" displayed prominently in bold, stylized maroon lettering. The letter "I" is represented by four diagonal lines, while "T" and "W" are fully outlined with sharp, angled edges. Below this logo, the phrase "Always keeping you safer online." is written clearly in bold, black text. The design is clean and minimalist, set against a white background, emphasizing online safety and security themes.
Revised Headline Feb

Cybersecurity News You Can Use

WhatsApp logo

WHATSAPP: GOOD FOR TEXTING. BAD FOR BUSINESS TRANSACTIONS. Note that WhatsApp app lacks end-to-end encryption for backups, making financial data vulnerable if an account is hacked. Phishing scams and fraud are rampant on the platform, with criminals impersonating contacts to request payments. If a device is stolen or hacked, sensitive business details can be misused. According to Deloitte, lack of regulatory compliance means transactions may not be legally protected. And unlike banking apps, WhatsApp offers no fraud protection, making chargebacks or reversals impossible. Don’t ever make payments, share financial details, or conduct sensitive transactions through WhatsApp.

Microsoft

MICROSOFT USERS: NOW IT’S UP TO YOU TO LOG OUT. Beginning this month, you will now remain signed in to your Microsoft accounts automatically unless you sign out or use private browsing, making it essential to stay cautious on public computers. Currently, users are prompted to choose whether they want to stay signed in, but this prompt will be removed.

FBI Seal

IS THAT POTENTIAL EMPLOYEE WHO THEY SAY THEY ARE? The FBI has issued a warning regarding North Korean IT workers exploiting their positions within U.S. companies. These professionals are securing employment by using stolen identities and use AI tools to impersonate US-based staff.

Organizations should strengthen their hiring processes by verifying identities during interviews and onboarding and be vigilant against potential threats from North Korean IT workers.

ITW Passwords
ITW logo in dark red with stylized letters and diagonal lines on the left side.
Shield icon with red exclamation mark above the word ‘Report’ and a dropdown arrow.

 

The most important step you can take when you suspect you have received a phish
is to report it to the local ITW Support Team as soon as possible.

This allows them to eliminate the threat from other inboxes as well, quickly. 

Reporting a Phish is made easy: just use the PhishAlarm Phish button

One more thing...

Cartoon Feb 1

Answers to Your
Cybersecurity Questions

“I received an email that appeared to be from my credit card company, notifying me of a suspicious charge on my account. The email address looked legitimate, so I called the toll-free number provided. Instead of reaching a customer service representative, I was stuck listening to a recorded sales pitch for a Medicare Advantage Plan, with no option to connect to the help desk. What did I miss?” — Jackie S.

It turns out the toll-free number you called was, in fact, the credit card company’s legitimate number. However, some credit card companies have started using pre-recorded sales pitches before connecting callers to a representative. This is especially frustrating when the issue you’re calling about could indicate a potential breach of your account. To bypass the recording, try calling the number again—it should connect you directly.

“What should you do if your personal information is for sale on the dark web?” — Shundetta S.

It probably is. The more active you are online—especially if you use lesser-known e-commerce sites, fall for phishing emails, or reuse passwords—the greater the chance your personal information is sold to scammers. A quick check on haveibeenpwned.com can help determine if your data has been compromised.

Companies like Norton, McAfee, Surfshark, Identity Guard, and Aura offer subscription services to monitor your credit and alert you to potential risks. It’s a good idea to research these services online to understand their pros and cons and learn how to freeze your credit to protect against fraud.

“I just saw a report on the news about someone whose house was sold without their knowledge, and they owned the house! I have a mortgage. How can I protect myself from that?” — Bendita12

This is called title fraud or property deed theft. It occurs when scammers transfer ownership of a property without the owner’s consent. Since property deeds are part of public records, fraudsters can exploit that accessibility. Although title fraud is relatively rare, it is more common in high-value real estate areas and among homeowners who own their properties outright. 

To protect against this risk, many local government offices and private companies offer deed fraud alert programs, which notify property owners of any changes to their deeds. Title insurance is another valuable safeguard, protecting against potential future claims on the property. This is a one-time fee that varies by state.

Send us your cybersecurity question for possible use in a future newsletter.

Cyber cartoon © 2025 Cartoonstock | Original content © 2025 Aware Force LLC