Security Alerts: Google Chrome Malware Scam & Phone Scam Targeting Taxpayers

February 23rd, 2017

We have two security alerts for you today, broken down below with specifics and some links for further reference.

What: Google Chrome Malware "HoeflerText - Font Not Found" Scam  Chrome Malware Scam Security Alert from The Fulcrum Group
How it appears to users:  You might find yourself land on a website with jumbled content prompting you to download a missing font to read the blog by updating the Chrome font pack.
What it does:  This malware prompts users to download a fake Google Chrome font pack update to trick them into installing malware on their systems. Circulating over the past month, hackers have inserted JavaScript into poorly secured, but legitimate websites to modify the text rendering on them, which causes the sites to look jumbled with mis-encoded text containing symbols and other random characters. There are several ways to identify this scam, which are detailed in the topic link below, but as always, it is best to exercise extreme caution when browsing online and using email.
For more info on the topic:
Cybrary 
Forbes Magazine

 

What:  Phone Scam Target Taxpayers, From the Texas Comptroller of Public Accounts
How it appears to users:  This is a phone scam involving an individual falsely claiming to represent the Texas Comptroller of Public Accounts, or in some cases the Texas Department of Transportation. The caller claims the taxpayer has a tax liability or other issue and requests credit card information.
What it does:  The purpose is to steal victims' credit card information.
For more info on the topic:  The Texas Comptroller's office wants to let you know it does not request payment details, such as credit card numbers or electronic check information, over the telephone. If you receive one of these calls, please do not provide your personal confidential credit card or bank information

As always, remember to use (and just as important, train your employees to use) best Internet security practices such as:

  • being aware of the origin of downloads
  • keeping antivirus software up to date
  • clicking on attachments in an email from someone you're unfamiliar with
  • noticing when a request just doesn't seem right, even if it seems to originate from someone you ARE familiar with (example - a principle in your company appearing to request you transfer money for something you are unaware of)
  • not clicking on direct links from within an email (copy and paste them into your browser instead)

If you ever have any questions, we always want you to feel great about reaching out to us at any time either via email or by phone at 817-337-0300.