Senior Cyber Safety Briefing – September 30, 2025

🚨ALERTNew Android Trojan “Datzbro” targets seniors via fake Facebook travel events
👉Why it matters – Researchers have discovered a mobile banking trojan aimed specifically at older adults. Attackers use AI-generated Facebook groups advertising social events for seniors to lure victims into installing a malicious app (APK) that can take over their phone and steal credentials. 

📣Call to Action – Never install apps through links from social media or messages. Only download apps from official app stores. If someone pressures you to install an app from a link, stop, ask a trusted family member or tech friend, and validate the source.

🚨ALERTCisco patches zero-day flaw (CVE-2025-20352) actively exploited in IOS / IOS XE
👉Why it matters – This critical vulnerability in Cisco’s SNMP subsystem is being used by hackers to take over or crash devices. It affects many Cisco routers and switches. 
📣Call to Action – If your network devices (home, small office, or via your provider) use Cisco IOS / IOS XE, check for firmware updates immediately and apply patches. Disable or restrict SNMP access if it’s not needed.

📈ECONOMY & SECURITY – Harrods reports data exposure of ~500,000 customer records
👉Why it matters – The breach exposed names, email addresses, phone numbers, and addresses. While no financial data was reported stolen, this information helps build more convincing phishing or “recovery” scams. IT Pro
📣Call to Action – If you’ve ever shopped with Harrods, be extra cautious of emails or calls referencing your purchases or personal details. Don’t click links in them unless you confirm they match Harrods’ official site.

💡OPPORTUNITY – PhishLumos: early-warning AI system for phishing campaigns
👉Why it matters – This new system detects phishing infrastructure days ahead of campaigns going live. Over time, tools like this could feed into consumer email protections, giving users heads-up before attacks hit.
📣Call to Action – Keep your email software and browser security settings up to date. In the near future, you may see features that flag “pre-phishing” content before it spreads widely.

✅Quick Safety Tip of the Day
If someone messages you a “group event” or “register for event” link out of the blue — especially if you don’t know the sender — do not click it. Instead, independently verify the event or contact the organizer directly.

🙋Closing Note

Stay safe, stay secure, stay curious, and remember my friends—you’re never too old to outsmart a scammer👋

(AI was used to create this article.)

Comments

Post a Comment

Popular posts from this blog

8-9-2024 Breaking Security News

Image
CISA and FBI Warn of Potential DDoS Attacks on Election Systems (August 8, 2024) : The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have issued a joint alert about possible Distributed Denial of Service (DDoS) attacks targeting U.S. election infrastructure. These attacks could disrupt access to election-related information but will not affect the integrity of the voting process. This warning is part of efforts to safeguard the upcoming elections​ ( GovConWire ) ​ ( CISA ) . Apache HTTP Server Vulnerabilities Disclosed at Black Hat USA (August 9, 2024) : Researchers at Black Hat USA 2024 have exposed vulnerabilities in the Apache HTTP Server, a critical web server software used globally. These vulnerabilities could allow attackers to gain unauthorized access or disrupt services. Administrators are urged to apply the necessary patches to protect their systems​ ( Cyber Security News ) ​ ( Help Net Security ) . OPSWAT Enhances Cybersecurity Capabilities with InQu...
Read more