FORM CRS & ADV 2A
MEET WITH AN ADVISOR
Security

CryptoChameleon

By Trilogy Financial
June 7, 2024
Share on:

CryptoChameleon is a phishing-as-a-service kit that makes it easier than ever for cybercriminals to create convincing phishing campaigns. Criminals often use it to impersonate reputable companies to steal passwords, account information, and other sensitive data.

 

A recent scam using CryptoChameleon targets LastPass, a popular password manager. Scammers pretend to be from LastPass, starting with seemingly authentic support calls. They later send follow-up emails with links to fake login pages, designed to look like legitimate LastPass sites. Once victims enter their master passwords on these fraudulent pages, scammers can access their password vaults and potentially lock them out of their accounts.

 

Reputable companies will never ask for your master passwords through phone calls, emails, or text messages. To protect yourself from these scams, remember to:

 

  • Hang up immediately if you receive a suspicious call claiming to be from LastPass or another reputable company.
  • Do not press any options in automated messages or clicking on links in emails from unfamiliar sources.
  • Report suspicious activity to the reputable company, including screenshots of suspect text messages and forwarded emails.

You may also like:

Life Planning Advice

Cell Phone Security

By
June Adams
January 4, 2022

As scammers get more sophisticated, be sure to protect yourself and your access points, such as your smartphone.

Start by making sure your phone is encrypted. Most phones, such as iPhones, Google Pixels and post-2018 Samsung phones are encrypted by default. Should you have a different model, search online for instructions on how to encrypt your phone.

Be sure to have a secure passcode for your phone. 6-digit passcodes are better than the standard 4-digit. Face or fingerprint recognition is secure as long as you use the phone’s built-in systems rather than a third-party. Utilize your smartphones’ “find phone” feature if it has one. Your smartwatch can also be utilized to locate a misplaced phone.

As your data can be intercepted on Wi-Fi networks that are not encrypted, it’s best to disable the Connect Automatically feature on your smartphone. This usually requires the simple UNCHECKING of a box. If storing payment methods electronically on your phone, only keep debit cards. Most vendors require a PIN to be entered when debit cards are used, adding an extra layer of protection. Lastly, should you be switching to a new phone, factory-reset the old phone after the switch, regardless of who will be receiving the old phone.

Ultimately, treat your phone with the same security as you treat your wallet, if not better.

Read more
Estate Planning Advice

Estate Strategies: Critical Elements of an Estate Plan

By
Mike Loo, MBA
February 23, 2021

With proper strategies, you may be able to maximize your opportunities and help manage stress and confusion for your loved ones. Learn the critical details to address when creating your own estate strategies. We're here to help.

Download your free ebook to learn more

Read more

Get Started on Your Financial Life Plan Today