P3C Technologies LLC

03/06/2026

Welcome to another episode of Tales from the Hacked....real stories about attacks on our clients that we prevented or stopped in their tracks. "A Docusign Account Goes Phishing..." Chuck is a client of ours. He saw a new email - a Docusign stating it was from his colleague Gilbert. Yes, it was a real Docusign account that sent it. What he did not know: attackers opened this Docusign account in Gilbert's name with a domain name that was one letter off the real one Gilbert's company uses (the real domain name ends in "attorneys.com" - the one bought by the attacker ends in "attoneys.com"). This means the attackers spent money to execute this attack. They bought a domain name, email infrastructure, and third party applications (Docusign). This was an attack targeting a small business. You are never too small to be a target. The real kicker? The Docusign form sent Chuck to a man in the middle attack fake form that captured his Microsoft 365 password and 2 factor code, giving the attacker access to Chuck's mailbox. Microsoft published their logs 4 minutes after the login by the attacker, a proactive monitoring IT threat detection and response tool included in our P3C proactive plans locked Chuck's account within 56 seconds of the log being published. The attacker had access to the account for less than 5 minutes - and the attacker did not have time to do anything. This is why it is important to have an IT provider watching your back. Contact us for an audit of your Microsoft 365 environment - even if you have internal or existing IT help - we will run the assessment for you.

02/23/2026

A very clever scam email. After analyzing the message - it looks to us like the attackers took over a Microsoft 365 account at a prominent well known business based in India. They then used this account to send out Microsoft Power Automate flow emails so the email came from a microsoft.com email address. One of our clients received this email and did the right thing - reporting it to us. Can you spot the warning signs in this phishing scam? A big give-away - tell me when Microsoft provides a phone number in their error messages or invoice emails. They don't like phone calls :)

12/12/2025

We often get folks asking about purchasing extra power bricks for their laptops - either as gifts OR just to have something that travels well in the laptop bag. Here are two recommendations that provide a maximum power output of 140watts on a single port (NICE) and will charge most laptops well (disclaimer: if you have a gaming or engineering laptop - let's chat more to get you a specific recommendation).

Option 1 - a 160 watt anker charger
https://amzn.to/4ptwdPM
Get the nicer rated cable to charge your laptop - the cable plugs into your laptop on one end and the power brick on the other:
https://amzn.to/48VSVsT
Option 2 - a little fancier - has a physical display to tell you how much each port is outputting, more ports, and outputs up to 140 watts per USB-C port:
https://amzn.to/3KZgB7F
Get the same higher power rated cable for your laptop:
https://amzn.to/48VSVsT

Want a more specific idea for a techie gift this holiday season? Let us know and we can do a shopping consult with you.

Product Details Model Number: A88E2 Anker Prime USB-C to USB-C Cable (6 ft, 240W, Upcycled-Braided), 100 Years of Unmatched Bend Durability Fast, Reliable, Sustainable: Experience ultra-fast 240W charging with a sustainable cable made from post-consumer recycled nylon, providing quick data transf...

11/25/2025

This is another reason why you should have a trusted IT partner guarding your environment, and automating updates on all your business computers. This is a fake alert message that pops up when browsing the web and makes you "think" your computer is doing updates. The fake alert says you need to help the process along...but the attackers are just getting you to run commands that let them into your machine...
https://www.malwarebytes.com/blog/news/2025/11/new-clickfix-wave-infects-users-with-hidden-malware-in-images-and-fake-windows-updates

You will never be required to do these convoluted steps to install updates...that is how you know this is a fake prompt designed to get you to act without thinking. We normally say "Think Before You Click"....in this case "Think Before You Type" because computers will do what you tell them to do!

10/31/2025

🛑 Cyber Tip Day 31: Stop the Panic, Call IT!
Scammers often use fear and urgency to trick you. If a pop-up warning tells you your device is infected and you need to download a "fix" immediately, that's a classic scare tactic!

Fake update warnings try to scare you into quick action. When in doubt, confirm with IT before acting.

Your Final Rule for Security: Never trust a surprise message that creates panic.

Don't Click: Absolutely do not click any button or link on a pop-up that says your computer is infected.

Confirm FIRST: If you see a scary warning or receive a highly urgent message, close the window and contact your IT support team directly using a known email or phone number.

Congratulations on completing Cybersecurity Awareness Month! Stay vigilant year-round! 🛡️

10/30/2025

🚫 Cyber Tip Day 30: Scammers Fake Updates Too!
Just when you thought you were doing the right thing by updating, scammers try to trick you with fake update notifications! A pop-up or a strange phone call telling you to urgently install a patch is usually a ruse to install malware.

Your Action Plan: Only perform updates from trusted sources.

Always use the device's official update feature or the vendor's verified site.

Official Channels ONLY: Go into your phone's settings or your computer's dedicated updater (like Windows Update or the Mac App Store).

Never trust: A random browser pop-up or an unexpected call telling you to update your computer or software. These are almost always malicious attempts to install viruses or steal information.

If you control the update process, you control your security! 🛡️

10/29/2025

🔁 Cyber Tip Day 29: Automation is Your Best Security Friend!
We know updates can be a hassle, but what if you didn't have to think about them? That's the power of automation! When updates are installed automatically, your device patches security holes as soon as the fixes are released.

Turning on automatic updates is the easiest way to stay ahead of threats.

It's set-it-and-forget-it security. Stop relying on memory or those annoying pop-ups.

Your Action Plan:

Check Your Settings: Go into the settings for your operating system, web browser, and major apps (like Word/Office, Adobe, etc.).

Enable Auto-Updates: Switch the setting from manual to automatic.

10/28/2025

⏰ Cyber Tip Day 28: Stop Hitting 'Remind Me Later'!
We all do it: that update notification pops up, and we quickly hit 'Remind Me Later' to keep working. But every time you delay an update, you're leaving a known security vulnerability open for hackers to exploit!

Don't hit 'Remind Me Later' on updates. Delaying them leaves you vulnerable to cyber threats.

Think of a software update like locking your front door. If you put it off, you're inviting trouble.

Your Action Plan:

Prioritize Security: Treat system updates (OS, browsers, antivirus) as a security task, not an annoyance.

Schedule It: If you can't do it now, schedule the update to run when you're not using the device, like overnight.

Close the security gaps quickly to stay protected! 🛡️

10/27/2025

⚙️ Cyber Tip Day 27: Patch It Up! Software Updates Are Your Digital Armor!
That little pop-up telling you to update your operating system or an app? It's not just annoying—it's your essential line of defense against cyber threats! Hackers constantly look for flaws (vulnerabilities) in outdated software.

Your Action Plan: Never Skip an Update!

Keep software and apps updated to protect your devices against the latest threats.

Patching Security Holes: Updates often contain critical "patches" that close newly discovered security gaps before criminals can exploit them.

Automatic Updates: Whenever possible, turn on automatic updates for your operating systems (Windows, macOS, iOS, Android) and major applications. Set it and forget it!

Don't Postpone: Install those updates as soon as they are released. Delaying them leaves your valuable data exposed.

An updated device is a secure device. Make it a habit! 🛡️



Tools

10/26/2025

🛑 Cyber Tip Day 26: The Unexpected is Often the Untrustworthy!
Scammers thrive on surprise. They send communications out of the blue, hoping to catch you off guard and get you to act without thinking. Whether it's an email, text, or call, unexpected communications are a massive red flag!

Your golden rule for today: Be cautious with ANY communication you weren't expecting.

Didn't order anything? That "delivery notification" is likely fake.

Didn't apply for a loan? That "approval" email is a scam.

Didn't sign up for a contest? That "winning notification" is trying to steal your info.

If it pops up out of nowhere and demands your attention, your first instinct should be suspicion, not curiosity. Think before you click, respond, or open! 🧠

10/25/2025

📱 Cyber Tip Day 25: Scams are Mobile! Watch Out for Smishing & Vishing!
We often focus on email phishing, but scammers are constantly adapting and targeting your phone, too! Scams don't just arrive in your inbox—they come via text and voice calls as well.

Know the terms, stop the threat:

Smishing: Phishing via SMS text message. These often contain links that install malware or take you to a malicious site.

Vishing: Phishing via voice call or voicemail. These often involve impersonating a bank or tech support to pressure you into giving up personal information.

Your Action: Apply the same rules you use for email: never click a link in an unexpected text and never give out personal info over an unsolicited call. Scammers are everywhere, so stay alert! 🛡️

10/24/2025

📞 Cyber Tip Day 24: When in Doubt, Verify It Out!
Scammers are experts at making messages look official, whether it's an email from your "bank" or a text from your "shipping company." But there's one simple action that defeats every single one of these scams: verification!

Don't trust the message; trust the official contact info.

Your Rule: If you receive a suspicious or urgent message, DO NOT reply, click, or use any contact information provided in that message.

Instead, verify that the message is legitimate by contacting the sender directly through known channels.

Bank/Credit Card? Call the number on the back of your card.

Company/Service? Go to the official website and use their customer support number or email.

A quick, separate call will confirm if the message is real—and if it's not, you've completely neutralized the threat! 🧠