Latest news with #LNK
Tom's Guide
6 days ago
- Business
- Tom's Guide
Hackers are impersonating credit card companies to infect your PC with password-stealing malware — how to stay safe
That email in your inbox that looks like its from your credit card company may actually be a fake that's designed to infect your computer with info-stealing malware. As reported by Cybernews, the latest tactic being used by hackers is to send out a warning email that purports to be from a credit card company and asks the target to perform a seemingly normal action such as confirming a recent purchase. However, the attachment inside the email is disguised with a pop-up or HTML page that is actually a LNK file. While not unusual for short cuts and links, this one leads victims to a legitimate looking page intended to keep them distracted while, in the background, a multi-stage malware process begins to run on their system. While the victim is opening the webpage, an HTA file downloads. Made up of HTML code, an HTA file is often used as a malware delivery method; this malware uses it to drop a DLL file onto the computer in question. For those unfamiliar, DLL files are used by Windows programs to share code and functions. However, this one is used to spread malicious code onto the targeted computer. Malware is injected into the Chrome browser using a technique known as Reflective DLL Injection which loads the malicious code directly into the computer's memory. The hackers can then proceed with any additional attacks including keylogging, data theft and creating a backdoor on the infected computer. This means they have access to every keystroke a user makes, which gives them login credentials, passwords, credit card numbers and browser history. With all of this sensitive personal and financial data in hand, the hackers behind this campaign can then take over accounts, commit fraud or even potentially try to steal your identity. Get instant access to breaking news, the hottest reviews, great deals and helpful tips. As with any phishing campaign, the goal here is awareness: If you remain aware and calm you can likely avoid falling victim to this scam. If you open an email that appears to be from your credit card company which asks you to perform a task or action, never click on any links or attachments contained within that message. Instead, make sure you're going to the company's actual website or using its app and typing in the URL yourself. Be vigilant about anything that arrives unexpected in your inbox and wants you to click on it. Especially if there's a sense of urgency implied, even if that urgency looks and seems legitimate. From there, you can hover over links with your mouse to see where they're taking you to before clicking on them. Two other security measures that can help are two factor or multi factor authentication, and one of the best password managers. Multi-factor authentication creates another step for hackers and threat actors to overcome in order to take over your accounts, and s password manager can help you create strong, unique passwords for each of your online accounts as well as store them securely in one place. Lastly, some of the best antivirus software solutions also have additional features that can help protect you while you shop online like a VPN and browser warnings when you visit a shady website. Follow Tom's Guide on Google News to get our up-to-date news, how-tos, and reviews in your feeds. Make sure to click the Follow button.
Yahoo
13-06-2025
- Business
- Yahoo
CT business owner admits to using $1.1M in COVID relief funds for travel, jewelry, cars
An East Granby woman has pleaded guilty to federal charges and has agreed to pay restitution in connection with a scheme in which authorities said she defrauded COVID-19 pandemic relief programs of more than $1.1 million. Karen Gaston, 44, appeared in federal court in New Haven on Thursday and waived her right to be indicted, according to the U.S. Attorney's Office for the District of Connecticut. She pleaded guilty to wire fraud and making illegal monetary transactions. According to federal authorities, Gaston in 2020 controlled a number of businesses, some of which were active while one was not and another had only one client. These included LNK, Elegant Clinical, Ruby Red LLC and Diamond Shine LLC. LNK and Diamond Shine LLC were operational but shared resources and employees, officials said. Ruby Red LLC had only one client and Gaston was its sole employee, according to authorities. Elegant Clinical was no longer operational. Beginning around April 2020, Gaston submitted loan applications to the Paycheck Protection Program (PPP) and for Economic Injury Disaster Loans (EIDL) — both of which provided emergency funds under the Coronavirus Aid, Relief, and Economic Security (CARES) Act. The applications Gaston filed 'falsely represented the status of the operations, resources and employees' of the businesses she controlled, according to federal officials. She also reportedly filed loan applications at separate financial institutions 'in order to disguise the true nature of her criminal activity,' officials said. The loan applications falsely represented that her businesses were all active and operating, authorities said. They also falsely represented the number of employees and the amount of wages purportedly paid to them, which were outlined in fraudulent tax returns and tax related documents, according to officials. Authorities said Gaston also falsely represented that a family member — who was used as an applicant on an application — was a part owner of one of the businesses. Gaston reportedly received a little more than $1.1 million in PPP and EIDL loan funds through the scheme, according to officials. Instead of using the funds for payroll or other operating expenses, she reportedly spent the money on 'personal expenditures, including travel, food, luxury home goods, expensive jewelry, cars and paying off her home mortgage,' the U.S. Attorney's office said. As part of the plea deal, Gaston has agreed to pay full restitution. She also agreed to forfeit a $39,521 ring she purchased in July 2020 from the jeweler Harry Winston. Gaston is free on a $100,000 bond while she awaits sentencing, which has not yet been scheduled. She faces a maximum of 30 years in prison.
Yahoo
12-06-2025
- Yahoo
East Granby woman pleads guilty to $1.1M pandemic relief fraud
EAST GRANBY, Conn. (WTNH) — An East Granby woman pleaded guilty Thursday to defrauding COVID-19 pandemic relief programs of more than $1.1 million, according to the department of justice. Shelton man pleads guilty to fraudulently filing for COVID-19 relief funds Karen Gaston, 44, controlled entities including LNK, Elegant Clinical, Ruby Red LLC and Diamond Shine LLC. LNK and Diamond Shine LLC were operational, but shared resources and employees. Ruby Red LLC had only one client and Gaston was its sole employee and Elegant Clinical was no longer operational. Beginning in April 2020, Gaston allegedly submitted loan applications to the Paycheck Protection Program (PPP) and Economic Injury Disaster Loans (EIDLs), two pandemic-era resources, that falsely represented the status of the operations, resources and employees of these entities. She also filed loan applications at separate financial institutions in order to disguise the true nature of her criminal activity. She received over $1.1 million in PPP and EIDL loan funds through this scheme, spending the money on personal expenditures, including travel, food, luxury home goods, expensive jewelry, cars and paying off her mortgage. She's facing a maximum 30 years in prison and has agreed to pay full restitution. Copyright 2025 Nexstar Media, Inc. All rights reserved. This material may not be published, broadcast, rewritten, or redistributed.
