Weekly Cyber AAG

Registered at SSA.GOV? Good for You, But Keep Your Guard Up
Comment: Unfortunately, identity thieves have discovered a way to steal Social Security benefits by impersonating victims and diverting payments, even if victims have not yet chosen to receive their benefits. With all of the sensitive information that has been exposed over the years by a number of high-profile data breaches, we all must assume that our personal data is available to criminals and remain vigilant with all of our accounts, checking them regularly and reporting suspicious activity immediately. Staying informed can help you detect and mitigate problems early and prevent a lot of hassle in the long run.

Malwarebytes Annual State of Malware Report Reveals Ransomware Detections Increased More Than 90 Percent 
Comment: 2017 was a big year for ransomware operations. While we will certainly continue to see more ransomware infections, the publicity around high-profile ransomware campaigns, such as WannaCry and NotPetya, has also educated the public about this threat and how to defend against it. This increase in awareness means that victims may be less likely to pay the ransom today than they were a year ago, which helps to deter this type of profit-motivated cybercrime. For more information, please see the NJCCIC Ransomware Threat Profile.

Google Removed over 700,000 Malicious Android Apps from the Play Store in 2017 
Comment: Over the past several months, the NJCCIC has alerted members to numerous malicious apps available for download in the Google Play store, many of which were designed to mimic legitimate applications. With a 70 percent increase from 2016, it is evident that threat actors will continue to infiltrate the Play store despite enhanced security measures. To help protect yourself from malicious Android applications, avoid downloading apps that require excessive device permissions and always review user ratings prior to installation.