Workhub Services’ Post

💥 An update on action we have taken to halt the fraudulent activity we’re experiencing via the cloned website💥 🔵 We have managed to get the website taken down and don't believe the fraudster has contacted anyone in the last 12 hrs. 🔵 If 'James Cartwright' does contact you - do not engage. 🔵 If you have already sent information via email or WhatsApp, please contact ActionFraud who are part of the Police Cyber Crime depthttps://lnkd.in/dbSt5db   ------------------------------------------------- 🚨 We've been made aware that someone has replicated our website & has been canvassing as 'James Cartwright' using #linkedIn and #WhatsApp. Please report any unusual activity and remember we are stonorsearch.com not .co.uk 😢 They are trying to trick jobseekers into sharing personal stuff like passport photos and proof of address. The real us would NEVER ask for that kind of info. So, how can you avoid falling for this copycat? 🚨 Double-check the website URL: Make sure it's the real deal, not some shady knock-off - we’re .com NOT .co.uk 🚨 Ask about the recruiter: Are they actually part of our team? 🚨 Hold onto sensitive docs: keep your passport photos and proof of address under lock and key. 🚨 See something, say something: If anything feels fishy, report it to us right away! We're all ears. We know this might be a bit unsettling, but we're taking this seriously. We have our IT guru on the case to shut them down, but any extra advice gratefully received on what we can do to stop these people as quickly as possible.. If you have any questions or concerns, please don't hesitate to get in touch with Charlie & apologies for any inconvenience caused.

In a worrying development for job seekers, a simple background check could now lead to a severe breach of privacy. Four months ago, National Public Data, a Florida-based background check company, lost nearly 3 billion records, reportedly including the personal information of every American. The leaked data allegedly included names, social security numbers, birthdates, phone numbers, and addresses. You may think you are unaffected because you have not used this company, but unfortunately, that is not the case. Even if you have never heard of National Public Data, your information may still be compromised, as this breach supposedly impacted every American. I learned today that my information was exposed, and I had never heard of them. This incident leaves over 100 million job seekers vulnerable to spammers, scammers, and identity theft, adding a layer of difficulty in an already challenging job market. While it is not a perfect solution, you can check if your email address has been compromised by visiting https://lnkd.in/eTYgfVvh - Monitoring your credit reports for any suspicious activity is also advisable. Many credit card companies offer free monitoring services, or you can access your credit reports for free at https://lnkd.in/ew7TuXsk - Remember, never give your payment information for a free service. Stay safe out there!

If your company has any social accounts, you need to read this article and audit: * Who has access to your accounts * What 3rd party apps have access and posting ability * Two-factor authentication * Shared logins (a big 🚩) #b2bsocialmedia

🚨 Attention LinkedIn Community! 🚨 It has come to our attention that there is a deceptive scam circulating, and we want to ensure the safety and security of our esteemed professionals in the industry. WARNING: Scam Alert! Beware of Fake Recruiter Activity Scam Details: A fraudulent individual (or individuals), under various aliases, is utilizing the domain "polyrhythmcareers.com" to impersonate a recruiter associated with our company, Polyrhythm Software, LLC. Our Stance: We want to emphasize that this entity is NOT affiliated with Polyrhythm Software, LLC in any capacity. They are misusing our company name and logo in an attempt to deceive job seekers and potentially perpetrate fraudulent activities. How to Spot the Scam: The domain "polyrhythmcareers.com" is not an official domain associated with our company. The individual may use different names but claim to be representing Polyrhythm Software, LLC. Any requests for personal information or payments should raise immediate red flags. Protect Yourself: Be vigilant when engaging with recruiters online. Verify the legitimacy of any communication or job offer by contacting the company directly through their official channels. Report any suspicious activity to the appropriate authorities or platforms. Our Commitment: At Polyrhythm Software, LLC, we are dedicated to maintaining the integrity of our brand and ensuring the safety of our community. We are actively working to address this issue and prevent further instances of fraud. Spread the Word: Help us safeguard our professional network by sharing this message with your connections.

Fraud Alert!! I wanted to share with you about a recent incident involving an individual named Parleen Khanna, who we hired from LinkedIn as a Social Media and Customer Success Manager two months ago. Unfortunately, due to non-performance, we notified her that we would only continue working with her if she met her KRAs and KPIs and would put her on PIP. In response, she took unauthorized actions and deleted all the content posted on our and our client's social media profiles and additionally copied & deleted our leads' data that was shared with her for BD. When we attempted to contact her, she blocked us from all communication channels and is currently unreachable. Data was retrieved and content was restored with the help of our IT team and social media platform support. After speaking with her previous employers, we learned of her similar behaviour during her tenure with them, which highlights the critical importance of conducting thorough background checks, regardless of whether you are a startup, small business, or large enterprise. We have issued her a legal notice and reported the matter to cybercrime authorities. #HumanResources #WorkplaceWellness #ToxicEmployees

AI is as much a tool for bad actors to attack you as it is for you in business operations. Do you have a multi-layered defensive strategy and monthly security awareness training? Get in touch. We can help.

Facto Technology - Leading BGV Partner Importance of Identity Check For Employment The process of hiring a new employee into your company requires a certain amount of time, money, and labor-intensive procedures. A poor hire could expose your company to risks of workplace misconduct or criminal activity, compromising its reputation and safety. A Pre-employment Identity Check should therefore receive special attention from employers to ensure that your hiring won’t turn out to be a risk for your company. Identity theft is a subject that concerns people seriously in our modern world. The Internet has a large amount of sensitive and personal data that online scammers and hackers can access. Identity theft typically involves actions like unauthorized access to personal information, falsified documents, account hacking, and so forth. For more details contact us on below number: 9353214344/8088236749 vijay.s@factotechnology.com vinitha.v@factotechnology.com VijayKanth SrinivasanDeepika SVinodhini VinayakVinitha vinayak #technology #bgv #services #facto #verification #employer #linkedin #faster #employeeengagement #vendor #partner #services #authentic #privacy #security #empanelment #digital #savetime #criminalrecord #lawfirm #backgroundverification #verification #tat #comprehensive #lessercost #Qualitative #Dataaccuracy #Duedeligence #global #identityverification #DigitalOnboarding #APIIntegration #delightfulservice #employment #reference #accurate

Business Email Compromise resulted in losses of over 💰 2.7 billion in 2022 alone. These attacks are so effective because they don’t contain malicious 🔗URLs or 📎 attachments and the request might be typical for the target’s role. For example, a payroll or AP employee might be asked to update remittance info. As bad actors have realized the potential for gain, the frequency and sophistication of these attacks have increased.   👉 FIRST we saw impersonation of employees asking for payroll changes, impersonation of CEOs, other execs, or attorneys requesting wire transfers. 📢 These types of attacks have since been mitigated by leveraging Display Name Impersonation Protection and the use of AI technologies like Proofpoint’s NexusAI.   👉 THEN we saw the rise of Telephone-Oriented Attack Delivery (TOAD). These emails attempt to move the conversation to a different mode of communication. Upon calling or messaging the victim would be unwittingly communicating with a call center who’s sole purpose is to steal from them. 📢 Proofpoint Essentials' new classifier from the Supernova Behavioral Engine is specifically built to detect these TOAD attacks.   👉 NOW we see a rise in Vendor Email Compromise or Supply Chain Attack. This form of BEC leverages your existing supply chain against you. It often begins with a compromised account used for reconnaissance. Bad actors then attack using the information they’ve gathered or by hijacking an email thread. 📢 Advanced BEC Defense leverages data from 2B+ daily messages and extensive threat data from non-email sources to stop evolving BEC variants and tactics. Email Warning Tags provide users feedback on suspicious emails such as uncommon senders or newly registered domains. 📢 Platforms like Red Sift's OnDMARC makes implementing email authentication protocols (SPF, DKIM & DMARC) simple and protects domains from being impersonated in BEC attacks to customers and suppliers.   👉 NEXT?... well, we may have just gotten a glimpse of what’s to come. Bad actors have been using generative AI tools like ChatGPT to craft their emails since before LLMs went mainstream. But now we’ve seen something different. https://lnkd.in/epkBefuc A finance worker in Hong Kong was duped into paying over $25 million by bad actors using deepfake technology. This attack started like so many other BEC attacks – with a request for wire transfers, the need for privacy and secrecy, and a resounding sense of urgency. What makes this attack different is what happened to alleviate the employee’s initial skepticism. A multi-person video conference where every person was fake. Using deepfake technology, the bad actors were able to impersonate individuals on a live video call – both looking and sounding like people he recognized.   🤔 Is this the start of something new? 💡 How are you preparing for the threat of deepfakes in BEC attacks?

Well, it was bound to happen… Connor when is Phin Security going to start phishing like this?? Kinda wild honestly, whether you ring the negligence bell or not you have to consider that this is going to get worse and worse. Hell, back at our MSSP we used to walk into client offices disguised as fake IT people and get away with so many things. 🥸 But now, we’re in a remote workforce world where Zoom calls are the norm. So what’s one to do when your bosses boss gives you a directive? Now I can tell you this, for a sum of this amount, probably should have had multiple authorization layers in place. But again, there’s always ‘someone at the top’ that can or may need to have ways to circumvent; but maybe those days are done. 🤔 Anywho, all very interesting to think about. Jason or Matt we just going to have to blood sample decrypt conference links to verify identities? https://lnkd.in/gdUEUVHy

🔒 Stay informed and protect your business! 🔒 Business Email Compromise (BEC) is a real threat, targeting companies using social engineering tactics to trick employees into fraudulent transfers. With billions lost annually, it's crucial to be vigilant. 📧 Check out our latest blog post for essential tips and best practices to safeguard your business against BEC attacks. 👉 https://lnkd.in/gVtPx5Bz #teamff #BEC #cybersecurityawareness #protectYourBusiness