Scammers Faking Fame: Don’t Get Played by Celebrity Catfish

The other day, I was browsing my social media feed when I saw a post from ENISA, a famous singer. She had posted on her social media page about scammers who were impersonating her and attempting to scam her fan base. Go ahead and take a look at the message that she posted below. Now, if the profanity and text in all capital letters were not enough, you can see that ENISA is upset about these scammers. Moreover, I do not blame her at all because I can imagine that she is constantly bothered by people who complain to her that they are getting scammed. Not to mention, I can't think of a single person, celebrity or not, who would appreciate people impersonating them maliciously. Scammers posing as celebrities are on almost every social media website that is out there. I cannot even begin to describe every instance of scammers that have slid into my DMs, The reason that the scammers pose as Influencers: Money, Money, Money. Scammers pose as Influencers for the money. The typical scammer doing these operations knows that these famous people have a lot of hardcore fans. Moreover, many people on a daily basis are trying…

Continue reading
Alabama’s Largest Credit Union Hit by BIN Attack: How Criminals Exploited Card Numbers to Target Walmart Transactions

Earlier in the week, we wrote about how the largest credit union in Alabama, Redstone Federal Credit Union(REDFCU) , was the target of a cyber incident in which members reported fraudulent charges from Walmart.com on their accounts. At the time of that article, REDFCU was quite secretive about what happened, but finally, later in the week, the bank released information to a local news outlet in Huntsville that the attack was the result of a Bank Identification Number (BIN) attack. Brief Information About BIN attacks: Every credit card has six digits at the beginning of the card that are tied to a specific bank. When attackers obtain those six digits, which are the same digits for thousands of customers, they can then utilize software programs to brute-force the remaining digits along with accompanying CVV security codes and expiration dates. The threat actors might then use another tool to push out these generated credit card numbers, expiration dates, and CVV security codes, among thousands of different online matches in hopes that they will get a match and successfully scam unsuspecting bank customers.  In the case of REDFCU, it appears that these threat actors were plugging in the numbers to Walmart.com until…

Continue reading
The Growing Menace of Ransomware in 2025

In 2025, ransomware remains a relentless cyber threat, with attackers refining their strategies to maximize damage. Unlike earlier variants, modern ransomware combines advanced encryption with cunning infiltration methods, targeting organizations’ most valuable assets. Criminals demand steep cryptocurrency ransoms, leaving victims weighing financial ruin against data loss. Austin Gomez at InfoSecDigest.com recently explored data on Ransomware.live which is a cybersecurity resource created by security researcher Julien Mosqueton. We examined several recent attacks, and identified a striking trend. A clear shift has emerged: attackers now prioritize small and medium-sized enterprises (SMEs) over large corporations. For example, a regional accounting firm in Ohio, was hit in January 2025, losing decades of tax records after attackers exploited an unpatched server. Similarly, a family-owned manufacturer in Texas faced a “double extortion” attack in February, where hackers encrypted production systems and leaked client contracts online after the ransom went unpaid. Another case saw a rural school district in Montana crippled in March, with student records held hostage via malware delivered through a compromised third-party app. These examples highlight the pivot to softer targets—SMEs often lack the dedicated IT teams or budgets of bigger firms. Attackers infiltrate via outdated software, weak passwords, or third-party vendors, then escalate…

Continue reading
X.com Outage: Is a Hacktivist DDoS Attack Targeting Elon Musk to Blame?

On March 10, 2025, X.com—one of the world’s leading social media platforms—experienced a prolonged outage, leaving users and observers puzzled. While downtime isn’t unheard of for major websites, the extended disruption has sparked widespread speculation about its cause. However, Elon Musk, X.com’s owner, took to the platform to reveal that a massive cyberattack is behind the outage, actively disrupting services. https://twitter.com/elonmusk/status/1899149509407473825 Our analysis of the cyber attack: Using the term "Cyber attack" can mean a lot of things. However, we at InfoSecDigest.com believe that this could possibly be a large-scale DDoS(Distributed Denial of Service) attack by haktivists. Notebly, Elon Musk has been making headlines lately from his remarks about Ukraine to to his Tesla facilities across the nation being attacked by activists.

Continue reading
Beware: Physical Letter Scams Targeting Executives Pretend to Be BianLian Group

On March 6th, 2025, the FBI dropped a heads-up about a sneaky scam hitting mailboxes across the U.S. This time, it’s not your typical email phishing nonsense—crooks are sending physical letters to corporate bigwigs, pretending to be the infamous BianLian Group. You know, those ransomware pros who’ve been making headlines for all the wrong reasons? Thing is, there’s no solid proof these letters actually come from BianLian. Seems like some opportunists are just borrowing the name to sound scary. The game plan here is pretty obvious: trick executives—the folks who can sign off on big money moves—into wiring cash straight to the scammers. It’s a bold phishing play, skipping the usual “encrypt your files” ransomware routine for something more old-school. And honestly, that’s what makes it so wild—it’s a letter you can hold, not just some sketchy link in your inbox. So, what’s a corporate exec supposed to do when the mail turns into a minefield? First off, get everyone in the company clued in with some solid cybersecurity training. I’m talking workshops or quick sessions where the team learns how to spot a scam from a mile away. Weird phrasing, demands for cash out of nowhere, or anything that…

Continue reading
Credit Union Members Report Unauthorized Walmart.com Transactions

On March 4th, 2025, Redstone Federal Credit Union(REDFCU) reported cases of charges appearing on members' accounts originating from Walmart.com. REDFCU is the largest credit union within the State of Alabama and has over 650,000 members. REDFCU released a statement stating that Walmart.com had already identified the charges and were working with members to flag the charges deemed to be fraudulent and return the money to the affected members. No further information was provided by either Redstone Federal Credit Union or Walmart Inc on how the fraudulent charges originated which leads to indicate that it’s a sensitive situation. However, Info Sec Digest, discovered that a smaller credit union known as Citizen Equity First Credit Union had a similar issue with fraudulent charges from ‘Walmart.com’. Moreover, 25 News Now reports that CEFCU had called this incident a “sophisticated scheme” but did not elaborate further on what caused the incident to unfold. As news broke out for both credit unions there were large debates on both the Reddit subreddits of r/PeoriaIL and r/HuntsvilleAlabama. In both instances, some members notably put the blame on the credit unions while other reddit users argued that the incident originated from Walmart Inc.

Continue reading