Posted
on Thursday, January 2, 2025
in
Privacy & Security
Scam of the Week: From Jackpot to Jeopardy
You may have logged in to your online employee benefits portal to access your employment or pay information. However, if you're unsure how to access it, you may have used Google to find the correct link. In this week’s scam, cybercriminals are trying to take advantage of this by using malicious Google ads, also known as malvertising, that impersonate these portals. When you search for your organization's employee portal, these ads are among the top results.
If you click on one of the fake ads, they direct you to a fake employee portal login page. When you enter your username and password here, cybercriminals are able to steal them. They can then log in to your real employee portal and replace your banking information with their own. You won’t receive your paycheck on the next payday, but the cybercriminals will!
Follow these tips to avoid falling victim to a malvertising scam:
- Anyone can buy ads on Google, including cybercriminals. Always be cautious when clicking on sponsored ads.
- Before you click a link, always hover your mouse over it. Watch out for spelling mistakes and suspicious URLs.
- If you're not sure how to access your employee portal, ask your organization's human resources department for the correct link.
Article provided by:
- account security
- ai
- artificial intelligence
- cyberattack
- cybercriminal
- cybersecurity
- data leak
- digital
- false information
- fraud
- malware
- money
- phishing
- phone
- ransomware
- red flags
- scam
- security
- sensitivity
- text