CONSUMER ALERT: Attorney General James Warns of Cyberattacks Targeting Consumers Reusing Passwords for Online Accounts

 

Simple Steps Can Help Consumers Safeguard Online Accounts From “Credential Stuffing” Attacks

 New York Attorney General Letitia James today issued a consumer alert warning New Yorkers of cyberattacks targeting consumers that use the same username and password (login credentials) on more than one website or app. In these cyberattacks, known as “credential stuffing” attacks, cybercriminals attempt to log in to online accounts using login credentials stolen from other online services. Specialized software enables attackers to generate and send tens of thousands of login attempts in quick succession. 

“With billions of stolen credentials floating around on the internet, credential stuffing attacks have the ability to hurt both businesses and consumers,” said Attorney General James. “Fortunately, consumers can help safeguard their online accounts against credential stuffing. As we work with businesses to better safeguard consumers’ private information, I encourage all New Yorkers to remain vigilant against these types of attacks and take the appropriate steps to protect their data and their wallets.”

Credential stuffing attacks occur with alarming frequency. One company reported that it witnessed more than 193 billion credential stuffing attacks in 2020 alone. And, earlier this week, Attorney General James announced that a sweeping investigation by her office had identified more than 1.1 million online accounts compromised in credential stuffing cyberattacks on just 17 well-known companies. 

Attorney General James recommends consumers take the following steps to safeguard their online accounts against credential stuffing attacks:

• Never reuse passwords: While reusing login information may be convenient, it also puts consumers at risk. Consumers are encouraged to always create a unique password for each of their online accounts.

• Use a password manager: A password manager on a phone or computer can keep track of a consumer’s passwords, automatically filling them in when they log in to a website or an app. Many modern web browsers include this functionality. Browsers and other password managers can also check if a consumer’s passwords have been stolen in a data breach, and even generate new passwords when creating new online accounts.

• Enable two-factor authentication (2FA): 2FA can provide an extra layer of security by requiring anyone logging in to an account to provide another credential, such as a one-time code sent by SMS or email. Most attackers that have access to a stolen password will not have access to a secondary credential. Consumers should ensure that if a website or app offers 2FA, that it is enabled for their account.

• Check regularly for unauthorized activity: Not all companies will notify their users when their online accounts have been compromised. Consumers are encouraged to regularly check their online accounts for unauthorized transactions and activity, and immediately contact their online service (and credit card company, if appropriate) if they see something suspicious.

• Sign up for updates: Consumers should register with a breach notification service, like Have I Been Pwned, that will send them a notification if an account associated with their email or phone number has been compromised.

• Take Suspicious Activity Seriously: If an online service notifies a consumer of suspicious activity on their account, they should immediately change their password. If consumers use the same password for other accounts, they should be sure to change the password for those accounts as well.

VCJC News & Notes 1/7/22

 

Van Cortlandt Jewish Center
News and Notes

Reminders Shabbos Shabbos information is, as always, available on our website, both in the information sidebar and the events calendar. Here are the times you need:   Shabbos Candles Friday 1/7/22 @ 4:26 pm Shabbos morning services at 8:45 am.  Please join the services if you can do so safely.  Shabbos Ends Saturday 1/8/22 @ 5:30 pm   Sisterhood Meeting Cancelled Because of COVID concerns the Sisterhood meeting scheduled for Sunday, 1/9, has been cancelled.

Here's this week's edition of the VCJC News and Notes email. We hope you enjoy it and find it useful!

DiNAPOLI URGES NEW YORKERS TO SPEND HOLIDAY GIFT CARDS

 

$16 Million in Unused Cards Turned Over to DiNapoli’s Office in 2021

 New York State Comptroller Thomas P. DiNapoli is urging New Yorkers to spend the gift cards they received this holiday season in a timely fashion. If not, the money could eventually get turned over to the Office of Unclaimed Funds. In the last seven years, the amount returned to DiNapoli’s office in unused gift cards has risen sharply from $5.8 million in 2014 to $16 million in 2021.

“Misplacing your gift cards after the holiday season is easy to do,” DiNapoli said. “Don’t wait too long to spend your gift cards to avoid possible inactivity fees or having the money turned over to my office as lost funds.”

After five years of dormancy, money from unused gift cards issued by New York businesses is turned over to the Office of Unclaimed Funds as abandoned property.

DiNapoli urges recipients to read the fine print for details about the fees and expiration dates on any cards they received and to register the card with the retailer. Under the federal Credit Card Accountability Responsibility and Disclosure Act of 2009, many types of retail gift cards sold after August 22, 2010 are not permitted to charge inactivity fees unless the card has been inactive for at least 12 months. Gift cards cannot expire within the first five years after purchase.

Currently, state law provides that gift cards cannot be assessed a monthly service fee against the balance prior to two years or the 25^th month of inactivity. Beginning in December 2022, with a few exceptions, state law will eliminate fees and expiration dates on gift cards.

New York requires companies offering rebates to disclose whether they will be issued in the form of a gift card and whether any fees will apply to those cards. Rebate cards are not all covered by the same rules as regular gift cards, so this disclosure helps consumers to identify the different cards and how they can be used.

Gift cards may have other terms and conditions that can decrease the value. These may include:

• Service fees when the card is purchased;
• Dormancy fees if the gift card is not used within a certain time period;
• Fees to call and check the balance remaining on the card; and
• Replacement fees for lost or stolen gift cards.

DiNapoli’s office is currently holding more than $17 billion in unclaimed funds. He urges New Yorkers to visit www.osc.state.ny.us to see if they are owed money.

Manhattan Man Arrested For Acting As An Unregistered Agent Of The Egyptian Government In The United States

 

 Damian Williams, the United States Attorney for the Southern District of New York, Matthew G. Olsen, the Assistant Attorney General for National Security, and Michael J. Driscoll, the Assistant Director-in-Charge of the New York Field Office of the Federal Bureau of Investigation (“FBI”), announced today the unsealing of an Indictment charging PIERRE GIRGIS, a dual Egyptian and U.S. citizen, with acting and conspiring to act in the United States as an unregistered agent of the Arab Republic of Egypt. GIRGIS was taken into custody earlier today, and will be presented this afternoon before U.S. Magistrate Judge Robert W. Lehrburger.

U.S. Attorney Damian Williams said:  “As alleged, Pierre Girgis failed to meet his requirements to register as a foreign agent in the United States.  At the behest of Egyptian officials, Girgis’s alleged prohibited conduct included attempting to covertly gather non-public intelligence about the activities of political opponents of Egypt’s president, and attempting to gain access for foreign officials to attend law enforcement-only trainings in Manhattan. This Office will continue to strictly enforce foreign agent registration laws, which remain critically important to ensuring that our government is not secretly influenced by foreign governments.”

Assistant Attorney General Matthew G. Olsen said: “The Department of Justice will not allow agents of foreign governments to operate in the United States to pursue and collect information about critics of those governments. Working at the direction of the Egyptian government, Girgis agreed to target its perceived critics located in the United States. This indictment begins the process of holding him accountable for his actions in contravention of our laws and values.”

FBI Assistant Director-in-Charge Michael J. Driscoll said: “Agents of foreign countries are required to register with our government for a good reason - they often act in their home country's interests and against those of the United States.  We allege Mr. Girgis sent non-public information back to Egypt for the benefit of the Egyptian government. Mr. Girgis broke our laws, and we must hold him accountable.”

According to the allegations contained in the Indictment unsealed today in Manhattan federal court, and statements made during court proceedings[1]:

From at least approximately 2014 to 2019, GIRGIS, a native of Egypt, acted in the United States as an agent of the Egyptian government, without notifying the U.S. Attorney General as required by law. GIRGIS operated at the direction and control of multiple officials of the Egyptian government in an effort to further the interests of the Egyptian government in the United States. Among other things, at the direction of Egyptian government officials, GIRGIS tracked and obtained information regarding political opponents of Egyptian president Abdel Fattah el-Sisi. GIRGIS also leveraged his connections with local U.S. law enforcement officers to collect non-public information at the direction of Egyptian officials, arranged benefits for Egyptian officials who were visiting Manhattan, and coordinated meetings between U.S. and Egyptian law enforcement in the United States, including by attempting to arrange for Egyptian officials to attend police trainings.

On or about May 7, 2018, GIRGIS discussed his status as an agent of the Egyptian government with an Egyptian official (“Egyptian Official-1”) using an encrypted messaging application. During the conversation, Egyptian Official-1 expressed frustration that GIRGIS had communicated with personnel from a different Egyptian government agency, warned GIRGIS that “it is not possible to open with all the agencies,” and stated that Egyptian Official-1 was “letting you [GIRGIS] open with us only.”[2] Later in the encrypted messaging exchange, Egyptian Official-1 advised GIRGIS that other Egyptian government agencies “want sources for themselves, and you [GIRGIS] have become an important source for them to collect information.” GIRGIS responded, “I know and I see and I learn from you,” and then informed Egyptian Official-1, “it will not be repeated again.”

Approximately one year later, on or about March 8, 2019, in the course of GIRGIS’s continuing operations as an Egyptian agent, GIRGIS and Egyptian Official-1 discussed an upcoming trip of certain Egyptian officials to the United States. During that telephone conversation, GIRGIS stated, “Tell me what you want me to do,” and Egyptian Official-1 responded by inquiring about GIRGIS’s relationship with a particular U.S. law enforcement officer. Egyptian Official-1 then instructed GIRGIS “to ask [the U.S. law enforcement officer] for something. We want you to find out if there are any police trainings happening in Manhattan in the coming days, and if so, who are the people in charge of these trainings? We would like to attend.” Later in the conversation, GIRGIS again asked, “What you want me to do?” Egyptian Official-1 directed GIRGIS, “Make follow up, Ok?” and GIRGIS agreed by responding, “Ok.”

GIRGIS, 39, is a resident of Manhattan. GIRGIS is charged with one count of conspiring to act as an agent of a foreign government without notifying the Attorney General, which carries a maximum sentence of five years in prison, and one count of acting as an agent of a foreign government without notifying the Attorney General, which carries a maximum sentence of 10 years in prison. The maximum potential sentences are prescribed by Congress and are provided here for informational purposes only, as any sentencing of the defendant will be determined by a judge.

Mr. Williams praised the outstanding investigative work of the FBI and its New York Field Office, Counterintelligence Division, and thanked the Department of Justice’s National Security Division, Counterintelligence and Export Control Section, for their assistance.

The charges in the Indictment are merely accusations, and the defendant is presumed innocent unless and until proven guilty.

[1] As the introductory phrase signifies, the Indictment, and the description of the Indictment set forth herein, constitute only allegations, and every fact described should be treated as an allegation.

[2] The statements described in the Indictment and herein are set forth in substance and in part.

Governor Hochul Updates New Yorkers on State's Progress Combating COVID-19 - JANUARY 6, 2022

 

108,132 Vaccine Doses Administered Over Last 24 Hours

130 COVID-19 Deaths Statewide Yesterday

 Governor Kathy Hochul today updated New Yorkers on the state's progress combating COVID-19.

"Wearing a mask, washing your hands, getting your vaccine, your second dose, your booster - we are not defenseless and these are things you can do to keep yourself and your loved ones safe and healthy," Governor Hochul said. "As we make our way through the winter surge, it is important to keep the wellbeing of others in mind. Be mindful of how your actions impact others so we can keep our communities open and thriving."

Today's data is summarized briefly below: 

• Test Results Reported - 377,565
• Total Positive - 84,202
• Percent Positive - 22.30%
• 7-Day Average Percent Positive - 22.48% 
• Patient Hospitalization - 11,184 (+317)
• Patients Newly Admitted - 2,020
• Patients in ICU - 1,404 (+45)
• Patients in ICU with Intubation - 695 (+38)
• Total Discharges - 238,342 (+1,658)
• New deaths reported by healthcare facilities through HERDS - 130
• Total deaths reported by healthcare facilities through HERDS - 49,029

The Health Electronic Response Data System is a NYS DOH data source that collects confirmed daily death data as reported by hospitals, nursing homes and adult care facilities only. 

• Total deaths reported to and compiled by the CDC - 61,225

This daily COVID-19 provisional death certificate data reported by NYS DOH and NYC to the CDC includes those who died in any location, including hospitals, nursing homes, adult care facilities, at home, in hospice and other settings. 

• Total vaccine doses administered - 34,082,745
• Total vaccine doses administered over past 24 hours - 108,132
• Total vaccine doses administered over past 7 days - 568,560
• Percent of New Yorkers ages 18 and older with at least one vaccine dose - 89.5%
• Percent of New Yorkers ages 18 and older with completed vaccine series - 80.8%
• Percent of New Yorkers ages 18 and older with at least one vaccine dose (CDC) - 95.0%
• Percent of New Yorkers ages 18 and older with completed vaccine series (CDC) - 83.1%
• Percent of all New Yorkers with at least one vaccine dose - 78.4% 
• Percent of all New Yorkers with completed vaccine series - 70.1% 
• Percent of all New Yorkers with at least one vaccine dose (CDC) - 84.8% 
• Percent of all New Yorkers with completed vaccine series (CDC) - 72.1%

George Diaz - A Ten Point Olan for Pandemic Mitigation

 

New variants are threatening economic recovery and prolonging the pandemic. 

Bronx Assembly Candidate George Diaz Jr. Proposes 10 Point Plan of Action

It was not unforseeable that another surge in COVID 19 infections would again burden public health facilities at record levels.  However, it seems that New York City has been caught off guard once again.  Reminiscent of the critical shortage of personal protective equipment for the public and for health care workers early in the pandemic, we are currently experiencing a critical shortage of COVID testing facilities.  Additionally, this is having a greater effect on communities like ours, where many have to commute on buses and trains to get to work. George Diaz, Jr. is running for State Assembly to represent the Bronx's 81st District and he shared his thoughts regarding the lack of contingency plans for future outbreaks and surges.  Diaz explained that in his view, "the narrow focus on vaccination requirements and roll-out has put my community at a disadvantage once again.  It's a major fail.  In New York City, our leadership continues to over  emphasize vaccination as an end to the pandemic and we relaxed social distancing measures too soon. Our leadership needs to take action to be more prepared and have a long-term vision for mitigating the effects of this pandemic."   The candidate's initiatives are listed below.

1. Support indoor mask requirements.

2. Emphasize a multi-faceted approach to COVID Protocols:  social distancing and sanitary measures to ensure that we don't return to a lock-down situation.

3. Provide more access to sanitary facilities (hand washing stations, public restrooms).

4. Create stronger contingency plans for A. In person learning that implements social distance B. hybrid learning and C. emergency remote learning situations D. Strengthen alternatives for students with special needs

5. Allocate funding for the development of community based child care centers and support for childcare facilities and workers’ COVID protocols. 

6. Re-examine effectiveness of vaccine requirements in the workplace and prioritize minimizing the effect on workers. A. Employer sponsored COVID protocols-  employer pays for testing and vaccination (Access to on-site testing, PTO for vaccination appointments and if necessary, aftercare). B. When the government institutes a mandate they must compensate government employees for the time and cost of testing, Access to on-site testing, PTO for vaccination appointments and if necessary, aftercare). C. When a employer makes a policy because of government mandates or rules, the governing body that instituted the policy must compensate the employers who in turn must compensate the employees: Access to on-site testing, PTO for vaccination appointments and if necessary, aftercare).

7. Extend unemployment benefits  for displaced workers and expand support services for displaced workers. 

8. Increased public access to testing.

9. City and state websites need to list all available testing and vaccination sites, not just the city’s Health and Hospital website (should also includes places where people can obtain take home rapid tests).

10.Providing support to small businesses to enforce COVID protocols. A. Create plan for outdoor heating options that are safe and sustainable. B. Support "to-go" alcohol policy for restaurants

Rhode Island Man Charged In Manhattan For Trafficking ‘Ghost’ Guns

 Damian Williams, the United States Attorney for the Southern District of New York, John B. DeVito, Special Agent-in-Charge of the New York Field Division of the Bureau of Alcohol, Tobacco, Firearms, and Explosives (“ATF”), and Johnathan Carson, Special Agent-in-Charge of the U.S. Department of Commerce, Office of Export Enforcement, New York Field Office, announced that ROBERT ALCANTARA was charged in a criminal complaint unsealed today with conspiring to traffic firearms and with making false statements.  ALCANTARA was arrested today and presented in the District of Rhode Island.

U.S. Attorney Damian Williams said: “Untraceable ‘ghost guns’ pose a serious threat to public safety.  As alleged, the defendant agreed with others to buy the parts for these firearms, put them together at his home, and then unlawfully sold or attempted to sell over 100 of them.  Thanks to our law enforcement partners, the defendant has been arrested, and his deadly ghost gun business has been shut down.”

John B. DeVito, ATF New York Special Agent-in-Charge said:  “As alleged, Robert Alcantara engaged in trafficking untraceable, Privately Made Firearms (PMF’s), commonly called ghost guns.  Stopping the flow of these firearms is a top priority of ATF, and we will rigorously pursue those who illegally sell these firearms.  I applaud the NYSP who initiated this investigation through superb investigative actions, as well as our partners at the US Department of Commerce, Office of Export Enforcement and the NYPD for their vital and continued contributions to the investigations.”    

US Department of Commerce, Bureau of Industry and Security, Office of Export Enforcement New York Field Office Special Agent in Charge Jonathan Carson said:  “As is alleged to have happened here, the trafficking of Privately Made Firearms poses a danger to our communities. The Office of Export Enforcement will continue to partner with other law enforcement agencies to combat the illegal smuggling of firearms, including ‘ghost guns’ that are difficult to trace.”

According to the allegations in the Complaint[1] unsealed today in Manhattan federal court:

From September 2019 up to November 2021, ALCANTARA and others entered an agreement in which ALCANTARA purchased the parts for more than 100 “ghost guns,” machined the ghost guns at his house in Providence, Rhode Island, and then illegally sold the working and completed ghost guns.  On November 20, 2021, law enforcement recovered parts for 45 ghost guns from ALCANTARA’s car.  When interviewed by law enforcement, ALCANTARA falsely told them that he had never sold or transferred ownership of a firearm to any other individual, and that he had never transported a firearm to the Dominican Republic.

Below are photographs of the 45 “ghost guns” seized from ALCANTARA’s house, as well as photographs of firearms ALCANTARA intended to sell to buyers:          

ALCANTARA, 34, of Providence, Rhode Island, is charged with: (1) conspiracy to traffic firearms, which carries a maximum sentence of five years in prison, and (2) making false statements, which carries a maximum sentence of five years in prison.  The maximum potential sentences in this case are prescribed by Congress and are provided here for informational purposes only, as any sentencing of the defendants will be determined by the judge.

Mr. Williams praised the outstanding investigative work of the ATF and the Department of Commerce.  Mr. Williams also thanked the New York City Police Department, the New York State Police Department, the Providence Police Department, and the United States Attorney’s Office for the District of Rhode Island for their assistance in the case.

The charges in the Complaint are merely accusations and the defendant is presumed innocent unless and until proven guilty.

[1] As the introductory phrase signifies, the entirety of the text of the Complaint and the descriptions of the Complaint set forth herein constitute only allegations, and every fact described should be treated as an allegation. 

Governor Hochul Advises New Yorkers to Avoid Unnecessary Travel as Heavy Snow and High Winds May Cause Dangerous Road Conditions in Several Regions Across the State

 

Areas Within the New York City, Long Island and Mid-Hudson Region Could Receive Up To Six Inches of Snow with Rates of One Inch or More per Hour at Times

Western New York and North Country Regions Forecast to Receive a Foot or More of Lake Effect Snow Through Friday Morning; Buffalo Skyway Currently Closed Due to Low Visibility

 Governor Kathy Hochul today urged New Yorkers to use caution and avoid unnecessary travel in several parts of the state as two weather systems are expected to produce snow and gusting winds in multiple regions, causing snow and ice-covered roads, low visibility, and potentially dangerous travel conditions through Friday morning. Western New York and the North Country are expected to receive more than a foot of lake effect snow through Friday, with wind gusts up to 40 mph, causing whiteout conditions at times. In the New York City, Long Island, and the Mid-Hudson Regions, up to six inches or more of snow is expected in some locations with winds gusting up to 40 mph. Given the forecast, New Yorkers, especially those in downstate regions, are being encouraged to utilize mass transit for commutes.

"With more heavy snow and high winds in the forecast, I'm encouraging New Yorkers to stay off the roads and be prepared for dangerous travel conditions" said Governor Hochul. "Areas in Western New York and the North Country are already experiencing lake effect snow and we're anticipating up to six inches of snow in Downstate regions between tonight and tomorrow morning. Please avoid any unnecessary travel to keep yourself safe and to help our maintenance crews out on the roads clear our highways and bridges quickly and safely."

Governor Hochul directed state agencies earlier this week to prepare emergency response assets in anticipation of storm-related impacts in several regions. On Thursday morning, the State Department of Transportation closed the Buffalo Skyway (State Route 5) from Ridge Road to Church Street in the City of Buffalo due to poor visibility as a lake effect band delivered several inches of snow per hour.

For areas in Western New York and the North Country, lake effect snow will continue Thursday through Friday night with snow totals reaching a foot or more in some locations. Areas in New York City, Long Island and the Mid-Hudson valley will see up to six inches of snow and high winds at times through Friday morning, causing dangerous travel conditions especially during the Friday morning commute.

Multiple weather warnings and advisories have been issued across the state for heavy snow and high winds, as well as lakeshore flooding for Jefferson and Oswego until Friday afternoon. For a complete listing of weather advisories in your area, visit the National Weather Service website.