As a cyber resilience leader, we believe it’s important to share the latest security news and learnings with our customers, prospects, and partners. With this in mind, we’re launching the following Vault Intel series to provide actional advice and practical tips to protect you and your organization from emerging threats. Let’s dive in.
Phishing Scam Targets Copilot Users
A new phishing scam is targeting Microsoft Copilot users with fake emails posing as legitimate messages from “Co-Pilot.” These emails can include phony invoices and redirect users to deceptive login pages to steal credentials. Don’t trust an email just because it says “Copilot.” Always double-check the sender address and hover over links before clicking. If something seems off, it probably is.
Protect Your Devices Traveling Abroad
Jet-setting with company data? International business travel can pose significant data security risks, including unsecured networks, warrantless device searches at borders, pervasive surveillance, and cyber threats in high-risk regions. Public Wi-Fi can be a hotspot for cybercriminals looking to intercept data, and even a quick moment of distraction can result in the loss or theft of a device containing company information.
Here at Commvault, we know how important it is to protect both our own company data and our customers’ data – wherever we are. But when you’re traveling, especially internationally, it’s essential to take extra precautions. Before you pack your bags, read more from JD Supra, including key steps from to keep your devices and data secure while you’re abroad. Click here to learn more.
Chase Tackling Zelle Scams
As of March 2025, JPMorgan Chase Bank is blocking Zelle payments made through social media and messaging platforms. Chase says 50% of scams start on social media.
Whether you’re snagging concert tickets or buying a secondhand gadget, take a moment before hitting “send.” If you don’t know the person, think twice – because once the money’s gone, it’s often gone for good. Instant transfers might feel convenient, but when it comes to your finances, a few extra steps could be the difference between a smart purchase and an expensive mistake.
Browsers: The Next Cybersecurity Battleground
Your browser is becoming the newest frontier in cyber warfare. Attackers are becoming more advanced by the second, leveraging JavaScript loaders and HTML injections to reassemble malware directly in browsers, bypassing traditional defense mechanisms. They are also becoming skilled impersonators, with 70% of phishing attempts mimicking trusted platforms like Microsoft and OneDrive.
Your best defense is to stay one step ahead. Always double-check URLs before entering credentials, use a password manager, and enable multi-factor authentication.
Mexico Enacts New Privacy Law
Mexico’s updated Federal Data Protection Law took effect March 21. It tightens consent rules, strengthens individual rights, and introduces a new privacy regulator. This reinforces the need for a scalable global privacy framework that can adapt and accommodate jurisdiction-specific rules.
Take Care with ChatGPT, Other AI Tools
AI is powerful, but not if it endangers your privacy. Here are three smart habits to protect yourself when using AI tools:
- The newspaper test: Before you hit “enter,” ask yourself: Would I be okay seeing this prompt on the front page of a newspaper? If not, don’t share it with ChatGPT– or any AI tool.
- Watch what you share: Avoid sharing anything sensitive, proprietary, personally identifiable, financial, or related to logins. Once it’s in, it’s out – these tools can’t guarantee confidentiality.
- Use temporary chat: Think of it like incognito mode for AI. With temporary chat enabled, your prompts stay out of your history and can’t be used to train the model. It’s a simple step that keeps your data in your hands.
No organization is immune to a cyberattack – it’s not a matter of if, but when, it happens. Sharing best practices, protecting ourselves, and working together makes us all more resilient.
