Beware of Credit Card Skimmers

A credit card skimmer is a portable capture device that is attached in front of or on top of the legitimate scanner. The skimmer passively records the card data as you insert your credit card into the real scanner. After your information has been recorded, it is usually then sold to other scammers on the black market or converted into a counterfeit card and used to make fraudulent purchases.

Watch the video: Men Place Card Skimmer on ATM at Store Machine: https://www.youtube.com/watch?v=y83ZgzuFBSE

Skimmer technology has become cheaper and more sophisticated over the years. Thieves can easily purchase these devices on the web for very little cost. https://www.amazon.com/slp/credit-card-skimmer/82pa9mxn7keb47f

Because it is difficult to know when your card has been skimmed, you may not find out unless you review your financial statements or get a call from your card provider.

“Some skimmers capture the card information using a magnetic reader and use a miniature camera to record you typing in your PIN number. Some skimmers will even go so far as to place a secondary keypad over top of the actual keypad. The secondary keypad captures your PIN number and records it while passing your input to the real keypad.”1

Here are a few tips to keep in mind…

Be aware of your surroundings. Although skimming can occur just about anywhere, one should be especially careful at ATMs, restaurants, bars, and gas pumps. A cybercriminal could place a tiny camera in an ATM, for example, which would skim your keypad entry and store the information for later use. Bolder thieves use a slim, insidious electronic device on the swiping area of the card reader to steal its data. Once the thief has your card information, a clone of your card can be made within a couple of hours.

“Identity thieves like to target places that are unattended. Be aware of your surroundings at all times. Scan the area before using your card. Thieves will often put a skimming device on gas pumps that are farthest from the store, or at an ATM that is not well lit. It is also important to look at the card reader carefully – give it a good tug or shake it. If thieves have used an overlay, it is usually stuck on with glue or tape.”2

At an ATM it is important to look around for security cameras. Criminals will typically place one in a position where it can capture PIN information as you type it in. Regardless of where you are, if anything looks different on the card reader, or appears to have any signs of tape or scratches on it, it could be a sign of tampering. If you see something that looks suspicious, don’t use it and report it to authorities.

Protect your PIN. Your personal identification number (PIN) is vital information to cybercriminals; if they can access this small piece of information, it is enough for them to take control of your account. So, be mindful of this and keep your eyes open to protect yourself. Look at the surrounding area for anything or anyone suspicious before you enter your PIN. Go with your instinct; if you feel unsafe, do not use your card at that location.

Make it difficult for criminals. Ask your financial institution about features that will track the location of both your card and phone. When someone attempts a transaction, the card company compares the location of the phone with where the card is being used. If the card and phone locations don’t match, the card company will deny the transaction.

Request a lower credit limit:  It is an effective and easy countermeasure for credit card skimming. A lower credit card limit ensures lower risks in case your card gets skimmed.

Opt for credit. It is usually safer to use a credit card versus a debit bard because it is easier to stop payment or cancel a payment than it is when the money is already taken out of your account. If you use your debit card at places such as the gas pump, you often have the option to use the card as a credit or a debit card. If you choose the credit option, you’ll likely be able to avoid entering your PIN. This can add a layer of safety. If there is a card skimmer camera nearby, set up to detect PIN information; yours won’t be recorded. Watch your account. Routinely check through all your transactions. Keep track of your account in a detailed manner. If you need to, use a separate personal notebook for keeping a log of your account transactions and other balance related information. Doing these things will help you to take prompt action should you find any discrepancies.

Delete account information online. Cyber-skimmers are another big threat. Never save any of your credit card and account information online. Always use trusted merchants and payment sites while engaging in online transactions using your card. If you have your card details saved in any online portal, it is advisable to have that information deleted. Prevention is always better than cure. You never know when your account details may be compromised if they are stored online.

Keep your cards safe. Never lose sight of your credit cards; it’s wise to put them in a safe or protected place when you’re not using them. If your cards are kept in a visible or easy-to-access spot like around your desk at work or in a credit card holder attached to your phone, it becomes easier for someone to find them and steal your information.

By being aware of your surroundings and following a few simple cautionary steps that we’ve outlined certainly can lessen the chances of falling prey to a skimming attack, 3However, if you ever experience a skimming attack, here is what to do:

  • Call the police. Make a police report and hang on to the police report number.
  • Contact your bank or credit card issuer immediately and tell them your card data has been stolen. If you don’t make a report quickly, you may be liable for some or all of the unauthorized charges.
  • If you file a report swiftly, federal law caps your liability at $50. Most credit cards voluntarily go further, and won’t charge you at all — again, if you report quickly.
  • Contact the three major credit bureaus – TransUnion, Equifax and Experian – to request a security freeze, which prevents new credit authorizations without your consent. Visit the website: www.annualcreditreport.com. It’s an institution created in response to a large number of identity theft victims and the cost incurred to them. Through the site, which was mandated by federal law in response to consumer outcry, you are entitled to receive one free credit report each year from each of the three major credit bureaus.”

Sources:

1 https://www.lifewire.com
2 https://staysafeonline.org
3 http://www.creditcards.com
4 https://www.idtheftcenter.org
5 https://www.thebalance.com
6 https://www.privacysense.net

Why “Single-Tasking” is more productive

When one thinks of all the tasks needed to be completed for the day, it’s no wonder we try to multi-task. We seem to think that it will be more efficient and enable us to accomplish more of our goals. Unfortunately, for 98% of the population, this is simply not that case; our brains are just not wired that way.1

Numerous studies have been conducted highlighting the inefficiency of multi-tasking. You may be reading this thinking, But I am the exception! Unfortunately, that’s highly unlikely. While you think you can work on a few projects at the same time, your brain is actually switching back and forth between tasks. This is taxing on your brain and body, causing you to become more tired. So, when you think you need an extra cup of coffee or food to get through a given task, what you may actually need is a break. In a study performed by researchers at Stanford University, they discovered that taking a 15-minute break every few hours, enabled subjects to be more productive.1

Gloria Mark, a professor in the informatics department at the University of California, Irvine, says it takes on average 23 minutes and 15 seconds to return to work after being interrupted. Switching back and forth can cause an increase of stress.2

So, how do you single-task? Here are some tips:

  • Limit the number of tabs on your browser. To limit your distractions try to limit the amount of tabs you have open. Some individuals even have what they call “single-tab” days each week to minimize distractions and improve focus.
  • Close your email. When we constantly check email, you are diverting your attention away from other tasks.  Instead, set aside times (first thing in the morning, noon, and before leaving for the day) when you will check email, and only check it then.
  • Silence your Cell. In today’s world of texting and social media, it can be tempting to check your phone every few minutes. That doesn’t bode well for efficiency in the workplace. Instead, silence, or turn off your phone while completing tasks.

 

These are only a few examples of how to reduce multitasking and improve efficiency throughout the day. Ultimately, it is up to the individual to decide they can implement these to improve their day-to-day tasks.

  1. A critical role for the right fronto-insular cortex in switching between central-executive and default-mode networks, Stanford Study, see daniellevitin.com
  2. Neuroscientists say multitasking literally drains the energy reserves of your brain
  3. How Single-tasking boosts your productivity

Team Bryley Successfully Completes Boston Brain Tumor Ride! – May 21, Waltham, MA.

This yearly event raises awareness and much-needed resources to fund critical brain tumor-specific programs to improve the lives of all those affected by brain tumors.  This year’s ride raised over $500K!

Bryley’s Prestigious Channel Partners 360° Award also traveled to the event!

Bryley’s own Jessica Giunta (right), and Audrey Baker
posed for a few pictures
during the day’s event. 

Jessica made the quilt that was on display during the event.

Team Bryley to participate in the Boston Brain Tumor Ride

On Sunday, May 21st, a few Bryley employees will ride in a family-friendly bike ride to help find a cure for brain tumors. Brain tumors are the leading cause of cancer-related deaths in children 0-141. By participating in the Boston Brain Tumor Ride, Bryley employees are taking a stand in the fight against brain tumors.

Bryley’s own Jessica Giunta, Marketing Specialist, has been an active committee member assisting with numerous events and fundraising efforts for the National Brain Tumor Society since 2014.

1 American Brain Tumor Association

News, Events, and Promotions

Nicole Sawitz Has a New Title!

Nicole Sawitz recently celebrated her first anniversary at Bryley Systems and earned a new title as Client Success Specialist. Nicole is a member of our business development team assisting clients by providing proposals and general business-development functions. Mrs. Sawitz has a BA from Goucher College and a Certificate for Program Evaluation from Tufts University.

 

 

Bryley Donates to the Assabet Valley Spring Fling Chamber Auction!

We are pleased to announce that we have donated a 23-inch HP ProDisplay monitor for the April 7th Spring Fling Chamber Auction. Cathy Livingstone, co-owner of Bryley Systems, added her creative touch by decorating the package – and, included a bottle of wine as part of the donation.

 

 

 

Pizza Party

On Thursday, March 23rd, Bryley employees gathered together to enjoy a luncheon with our friends at TNS Communications. Thanks to John and Peter from TNS for the fabulous pizza!

The Value of an MSP Relationship

IT professionals working for an organization are seeing the value of a Managed IT Service Provider (MSP) relationship as more positive than ever before. In fact, most organizations who use MSPs typically maintain an IT staff of their own to work together with their MSP.

There are numerous advantages of having a valued MSP.

One-Time Events are Less Costly and Stressful. Upgrades or installations are often frus­trating because the organization has to go to great expense to send people to training and oftentimes, it is training they’ll only use once. MSPs who have already performed those installations or upgrades can of­ten be swapped into place to execute those tasks which in the long run, saves your organization both time and money.

You are Less Likely to be Short-Handed. Whenever an assigned MSP professional is out for any reason, they are replaced by an equally skilled colleague who has been briefed and trained on your organization’s IT environment. Substitutes can quickly fill in the way you expect them to.

Reliability and Accountability. No longer will a single individual be held responsible for any specific situation. The MSP will own the obligation to resolve any issue quickly and thoroughly. Your regular IT staff can also easily be backfilled in the event of an emergency situation which will reduce stress and the likelihood that a project may not be completed in the event of a regular staff member being ill or having an emergency.

Broader Selection of Skills. Sometimes getting certain IT tasks accomplished requires skills that none of the IT personnel assigned to the company have. In these cases, the MSP can temporar­ily replace assigned personnel with others who do have those needed skills, therefore relieving the pressure to engage a “specialist” to get unusual tasks handled.

Increased Agility. New technologies can be deployed and the value of that technology is appreciated much more rapidly because there is little to no learning curve for employees. When the MSP can fill in the gaps between standard operating procedures and emerging new needs.

Focus on Growth. Often, when compa­nies are growing quickly, they are challenged to find and acquire qualified IT employees to accommodate that growth. This often results in rushing and settling for less-than-ideal candidates. Bringing in additional MSP resources shifts that daunting task to a partner who is far better equipped and qualified to provide the right people with the right skills to keep the company growing.

Technology Decisions Become Independent of HR Issues. Suddenly your organization is free to make major revisions to their chosen platforms without regard for the need to terminate a lot of employees. Instead, you can simply require the MSP to furnish people with the new skill sets.

The supplemental role of your MSP can make many tasks easier when it comes to tactical line employees and their functions.

What happens when something goes wrong near the top of the or­ganization?

For example, what would happen if an executive suddenly left the company? Maybe it’s the CIO who suddenly resigns to go work for a competitor. Or, perhaps the CTO stole valuable customer data and was fired. Scenarios like these examples can leave a gaping hole at the top of an organiza­tion. Who would fill that gap? How quickly can a new CTO or CIO be re­cruited and hired? How long would it take for them to understand the current state of your corporate IT?

A senior engineer at your MSP who has been working with you on your infrastructure can easily and readily step in. They already have a working knowledge of your tech­nology environment, having probably participated in designing much of it. They have the proper skills and experience, along with the full support of the entire MSP team.

In several cases, MSP specialists have been called upon to take con­trol of an IT environment, change all the passwords, lock the offend­ing executive out of all systems and help to escort them out of the company. Usually this senior MSP replacement executive will remain in place until a viable replacement is found, recruited, hired, and trained.

Every employer wants to do their best for the employees that do their best to promote the organization’s growth and success. For those who have thought about bringing in an MSP to reduce IT costs, this has often been a primary concern.

Many high-value employees who were becoming bored in their daily maintenance and support routines have been given new opportuni­ties which have enabled them to make dramatically greater contribu­tions to the company, thus also furthering their own careers.

The role of the MSP in today’s progressive organization is supplemental, and complementary. No longer are MSPs considered vendors who provide ‘bodies’ to perform tasks.

Bryley Systems prides itself on being a truly valued partner to our clients, who engage us to work side-by-side with them and their people to grow their organizations.

Bryley Systems has 30 years of experience taking the worry off of our clients’ shoulders and effectively managing IT environments at a predictable cost. For more information about Bryley’s full array of Managed IT Services, please contact us at 978.562.6077 or by email at ITExperts@Bryley.com. We’re here for you. 

Sources and References:
https://www.nytimes.com
https://www.researchgate.net
https://www.bsminfo.com
http://www.toptechnews.comhttps://www.cnet.com

Be Aware! Avoid Phishing Scams During Tax Season

Let’s face it, tax season is stressful enough without having to contend with increasingly common and sophisticated tax scams. It certainly can be a headache to prepare your taxes, but falling for a tax scam could make it a nightmare.

The world is full of people who are ready and willing to take advantage of someone when they’re vulnerable. Tax scams contain new forms of fraudulence being discovered every day, but the most prevalent by far is the email phishing scam.

The Definition of Phishing. It is the attempt to obtain sensitive information such as usernames, passwords, and credit card details (and, indirectly, money), often for malicious reasons, by disguising as a trustworthy entity in an electronic communication.

Phishing scams are easy to accomplish and can be done from home. A typical phishing email during tax season will bear similar (or sometimes identical) IRS letterhead or logos and will instruct you to follow a link that will lead you to, you guessed it, a site that requests your personal information. Some individuals are too quick to trust a logo or letterhead and forget to check the validity of an email/site before divulging their personal information.

In recent years, thousands of people have lost millions of dollars and their personal information to tax scams and fake IRS communication. Scammers use the regular mail, telephone, fax or email to set up their victims.

Knowledge is Power! Remember that the IRS doesn’t initiate contact with taxpayers by email, text messages or social media channels to request personal or financial information. In addition, the IRS does not threaten taxpayers with lawsuits, imprisonment or other enforcement action. Recognizing these telltale signs of a phishing or tax scam could save you from becoming a victim.

Last-Minute Email Scams. The IRS, state tax agencies and the tax industry urges taxpayers to be on guard against suspicious activity, especially email scams requesting last-minute deposit changes for refunds or account updates.

  • Learn to recognize phishing emails, calls or texts that pose as banks, credit card companies, tax software providers or even the IRS. They generally urge you to give up sensitive data such as passwords, Social Security numbers and bank or credit card accounts. Never provide your private information!
  • If you receive suspicious emails forward them to phishing@irs.gov. Never open an attachment or link from an unknown or suspicious source!

IRS-Impersonation Telephone Scams. “An aggressive and sophisticated phone scam targeting taxpayers has been making the rounds throughout the country. Callers claim to be employees of the IRS, using fake names and bogus IRS identification badge numbers. They may know a lot about their targets, and they usually alter the caller ID to make it look like the IRS is calling.

Victims are told they owe money to the IRS and it must be paid promptly through a pre-loaded debit card or wire transfer. Victims may be threatened with arrest, deportation or suspension of a business or driver’s license. In many cases, the caller becomes hostile and insulting. Or, victims may be told they have a refund due to try to trick them into sharing private information. If the phone isn’t answered, the scammers often leave an “urgent” callback request.”1

The IRS will never:

  • Call to demand immediate payment using a specific payment method such as a prepaid debit card, gift card or wire transfer. Generally, the IRS will first mail you a bill if you owe any taxes.
  • Threaten to immediately bring in local police or other law-enforcement groups to have you arrested for not paying.
  • Demand that you pay taxes without giving you the opportunity to question or appeal the amount they say you owe.
  • Ask for credit or debit card numbers over the phone.

Remember: Scammers Change Tactics — Aggressive and threatening phone calls by criminals impersonating IRS agents remain a major threat to taxpayers, but variations of the IRS impersonation scam continue year-round and they tend to peak when scammers find prime opportunities to strike.

Interested in more security news? 

Sign up for our monthly newsletter to receive the latest cybersecurity updates right in your inbox!

Newsletter Signup

Surge in Email, Phishing and Malware Schemes. “When identity theft takes place over the web (email), it is called phishing. The IRS saw an approximate 400 percent surge in phishing and malware incidents in the 2016 tax season. The IRS has issued several alerts about the fraudulent use of the IRS name or logo by scammers trying to gain access to consumers’ financial information to steal their identity and assets.

Scam emails are designed to trick taxpayers into thinking these are official communications from the IRS or others in the tax industry, including tax software companies. These phishing schemes may seek information related to refunds, filing status, confirming personal information, ordering transcripts and verifying PIN information.

Variations of these scams can be seen via text messages. The IRS is aware of email phishing scams that include links to bogus web sites intended to mirror the official IRS web site. These emails contain the direction “you are to update your IRS e-file immediately.” The emails mention USA.gov and IRSgov (without a dot between “IRS” and “gov”), though not IRS.gov (with a dot). These emails are not from the IRS. The sites may ask for information used to file false tax returns or they may carry malware, which can infect computers and allow criminals to access your files or track your keystrokes to gain information.”

For more details, see:

Unsolicited email claiming to be from the IRS, or from a related component such as EFTPS, should be reported to the IRS at phishing@irs.gov.

Tax Refund Scam Artists Posing as Taxpayer Advocacy Panel. “Some taxpayers may receive emails that appear to be from the Taxpayer Advocacy Panel (TAP) about a tax refund. These emails are a phishing scam, where unsolicited emails try to trick victims into providing personal and financial information. Do not respond or click any link. If you receive this scam, please forward it to phishing@irs.gov and note that it seems to be a scam email phishing for your information.

 TAP is a volunteer board that advises the IRS on systemic issues affecting taxpayers. It never requests, and does not have access to, any taxpayer’s personal and financial information.

How to Report Tax-Related Schemes, Scams, Identity Theft and Fraud. To report tax-related illegal activities, you should report instances of IRS-related phishing attempts and fraud to the Treasury Inspector General for Tax Administration at 800-366-4484.”3

Additional Scam-Related Information:

 If you suspect you are a victim, contact the IRS Identity Theft Protection Specialized Unit at 800-908-4490. When reporting to the IRS, you will need to:

  1. Send a copy of an IRS ID Theft Affidavit Form 14039 – download the form here: www.irs.gov/pub/irs-pdf/f14039.pdf.
  2. Send a proof of your identity, such as a copy of your Social Security card, driver’s license or passport.

After doing that, make sure to:

  • Update your files with records of any calls you made or letters you sent to the IRS
  • Put a fraud alert on your credit reports and order copies of your credit reports to review any other possible damage
  • Create an Identity Theft Report by filing an identity theft complaint with the FTC and a police report

 

Sources and References:

1 http://www.vanderbloemengroup.com/articles/irs-impersonation-telephone-scam

2 http://www.irs.gov

3 http://www.irs.gov

http://usa.gov/business-taxes

http://www.aarp.org

https://www.taxadmin.org/

https://treasury.gov/tigta/

 

 

Bryley Receives Prestigious Channel Partners 360° Award!

April 11, 2017 — Bryley Systems is pleased to announce that it has been honored by Channel Partners, with the 2017 Channel Partners 360° Business Value Award.  We are one of only 25 technology-oriented companies worldwide to receive this award, which is one of the most sought-after in the industry.

This award honors service providers that are taking a holistic approach to technology solutions and creating business value for their clients and have a well-rounded portfolio.  Channel Partners started “as a simple idea to reward partners of all sizes for creating business value for their customers through telecom, IT, and cloud solutions…” and “rewards channel partners – agents, VARs, dealers, system integrators, MSPs and consultants – of all sizes for innovation, solutions-orientation and customer focus.”

Bryley’s President, Gavin Livingstone and co-owner, Cathy Livingstone, were on hand to accept the award stating “Bryley Systems works toward continuous improvement; we strive to manage, optimize, and secure our client’s information technology, which brings substantial business benefit and value to their organizations. Our team-focused, best-practices-oriented approach, coupled with high-value/low-risk service options, enables us to provide our clients with Dependable IT at a Predictable Cost™.

We thank Channel Partners for this prestigious Channel Partners 360° award!”

Award recipients were honored at a ceremony on April 11 at the Channel Partners Conference & Expo in Las Vegas.

Cathy and Gavin Livingstone judge at MHS SE Fair!

Cathy and Gavin Livingstone, joint-owners of Bryley Systems Inc., were again judges at the Marlboro High School Science and Engineering Fair on Tuesday, February 28. (The MHS SE Fair is a well-run, annual event that provides support and encouragement of student research, inquiry, and design.)

Cathy is pictured with Kimberly Konar and Amanda Cameron (aka The Bottle Girls), who presented BioPlastic: An Alternative to Environmentally Destructive Polymers. Kimberly and Amanda were third-place winners.

Winners go to the upcoming Worcester Regional Science and Engineer Fair and, if successful, on to the Massachusetts State Science & Engineering Fair.

Bryley Basics: Purchase Windows 10 with new PCs and laptops

We keep having the same conversation with clients over and over again, especially those who are buying new computers: What Windows version should I deploy?

If you are purchasing new computers for your organization, please consider installing Windows 10. We have clients who still want us to install Windows 7, however, that operating system will be end of life January 14th, 2020.  What that means is that Microsoft, after 1/14/2020, will no longer provide security updates for Windows 7, such that your computer will be more susceptible to getting malware and your organization will not be compliant. In less than 3 years, you will have to upgrade the operating system of that computer, which involves additional labor costs, software licensing, and employee downtime.

Note: We didn’t forget about Windows 8.1, but we find that a lot of distributors no longer stock computers that have Windows 8 (8.1) pre-installed. It also seems to be another operating system (remember Vista?) that Microsoft “abandoned” since it was only around for 3 years, making it one of the most short-lived operating systems.

Prior to installing Windows 10 on new computers, we will need to find out if current applications are compatible with the new operating system. With the name of the application and the version, we should be able to verify compatibility by searching the Internet and then verifying with the manufacturer directly.

For more information, please visit Migrating to Windows 10 – Now, later, or never, from the August 2015 issue of BITs (Bryley Information and Tips).

Making this type of transition isn’t always easy, but we are here to help; please reach out to us at 978.562.6077 or email ITExperts@Bryley.com.