☝️ TOP STORY

Password is still around

Meanwhile … Laundering cash from healthcare, romance scams lands US man in prison for a decade.

📰 Headline Highlights 📰

• AI Chatbots Highly Vulnerable to Jailbreaks, UK Researchers Find

• New 'Siren' mailing list aims to share threat intelligence for open source projects

• How I upgraded my water heater and discovered how bad smart home security can be

• Meta, Match, Coinbase and others team up to fight online fraud and crypto scams

• Zoom Adding Post-Quantum End-to-End Encryption to Products

• New Antidot Android Banking Trojan Masquerading as Fake Google Play Updates

• Unmasking a Cyber Attack that Targets Meta Business Accounts

In other news, Some AI companies face a new accusation: ‘Openwashing’

MUST READ: A researcher discovered a consumer-grade spyware app on the check-in systems of at least three Wyndham hotels across the US.

🤷‍♀️ What now?

Check your account security

When was the last time you check your security settings of your account? Maybe it’s time to go through it again but if you only recently when through it, is your multi-factor authentication (MFA) turned on?

LOOK OUT: Cybercriminals Exploit Cloud Storage For SMS Phishing Scams

There will be a day in the near distant future when we won’t have to deal with passwords anymore but for now, it’s still something we have to deal with. Since Hexagon Center is dedicating this month of May to put the focus on password security, we thought we’ll emphasize the one most important feature of a secure password: the length of your password.

Inside Hexagon

Hexagon Center is organized to help and warn the public about cybersecurity while making the world a better place to live in. We can do it together.

We are looking forward to our one year milestone next month and we hope that we can help exponentially more people continuing forth.

Glossary/Legend:

• Personal Identifier - A phrase, code or situation that correctly identifies the person you are trying to verify.

• Cyber Attackers and Cyber Predators - these terms refer to people who use any kind of technology, including cell phones, to prey on us.

• Ransomware - a type of malware that cybercriminals use to restrict access to data on a computer, device, or network until a ransom is paid. Ransomware can either encrypt files, making them unreadable, or lock a user out of their computer.

• Open washing occurs when a process, product or data is called “open” to support transparency and accountability efforts but isn't actually open.

• Wiper attacks - malware-based attacks designed to permanently delete or corrupt data on targeted systems. When successful, these attacks render systems inoperable and inflict permanent data loss.

• Secure by default - a holistic approach to security that aims to solve problems at their root cause, rather than treating symptoms. It's a process that should be built into products from the beginning and continue throughout their lifetime. The goal is to make products secure enough to be resilient against common exploitation techniques without additional cost or configuration.

• Chatbots - conversational tools that perform routine tasks efficiently.

• Multi-factor authentication (MFA) - a multi-step account login process that requires users to provide more than just a password to sign in to an account or app.

HOUSEKEEPING

Spread cybersecurity culture

Do you have any suggestions on how we can further share this newsletter? Tell your friends and family about us by sharing with them the Hexagon Center official website:

hexagoncenter.org

You may reply to this newsletter or email us at
[email protected]

Send us any questions or things you want to talk about. Please share some fun facts with us. We welcome feedback and suggestions.

Hexagon Center is formed as a nonprofit corporation in California for public benefit,
in the process of attaining 501(C)(3) status.

_DISCLAIMER

_{Cybersecurity is an ever-changing field, and threats may evolve. While Hexagon Center strives to provide accurate and timely information, we cannot guarantee absolute security. Users are responsible for implementing their security measures and staying informed about the latest cybersecurity developments.}

_{SEE MORE DISCLAIMER HERE}