📰 The Consumer Cyber Sentinel: Your Digital Defense Report 🛡️

Date: Thursday, November 20, 2025 Stay Ahead of the Scams: New updates every Monday and Thursday.

Welcome to your essential security briefing. Today's news focuses on major data breaches and the rise of sophisticated, AI-driven scams that are becoming harder to spot.

🚨 Data Breach Alert: Insurance Company Exposes Social Security Numbers

California Casualty Indemnity Exchange, an insurance company primarily serving teachers, law enforcement, and firefighters, recently reported a data breach that occurred between September 2 and 8, 2025.

• The Critical Risk: The compromised files contained highly sensitive consumer information, including names, dates of birth, addresses, and Social Security Numbers (SSNs).

• Action You Must Take: If you are a current or former policyholder of California Casualty, you should:

  • Watch for Official Notification: The company is required to notify affected individuals. Wait for that letter or email.

  • Consider a Credit Freeze: Since SSNs were exposed, consider placing a credit freeze with the three major credit bureaus (Experian, Equifax, and TransUnion) to prevent criminals from opening new accounts in your name.

DoorDash Confirms Breach of Customer Contact Info
DoorDash says hackers gained access to some users’ personal data—including names, email addresses, phone numbers, and physical addresses—after targeting an employee. CT Insider

• Why it matters to you: While financial information (like card numbers) wasn’t exposed, this data could be used in targeted scams or phishing attempts.

• Bottom line: Even routine services can be breached, so always stay alert to suspicious messages that reference things like “your order” or “your account.”

🤖 New Warning: AI Makes Scams Harder to Spot

Cybersecurity experts are increasingly worried about how criminals are using Artificial Intelligence (AI) to make their attacks more convincing.

• The Threat: AI tools are now creating flawless text, emails, and deepfake voices for phishing attacks. Scammers are no longer relying on bad grammar to trick you; they are creating highly professional, personalized communications that look like they come from your bank, utility company, or a social media connection.

• The Utility Scam: Utility providers, like Con Edison, are warning customers that scammers are spoofing their phone numbers and demanding immediate payment via prepaid gift cards or cryptocurrency to avoid immediate service shutoff.

• Action You Must Take: If a communication is urgent and involves money, STOP. Do not trust the name or number on your caller ID. Always use a known, official phone number (like the one printed on your bill) to call the company back and verify the request.

Fake Job Offers: Scammers are impersonating legitimate recruiters or companies, asking for “application fees” or personal details. blog.google

• How it works: You think you’re applying for a job—but they’re actually stealing your information or tricking you into running malicious software.

AI Shopping Scams: Fraudsters create entirely fake online stores using AI-generated branding and backstories. F-Secure

•  How it works: These bogus shops look very real, so people buy items that never arrive or are counterfeit.

Malicious VPN Apps: Apps claiming to be “secure VPNs” are actually malware in disguise, putting your data at risk. blog.google

•  How it works: You download what you think is a VPN, but instead, you install something that spies on or steals your information.

✨ Quick Cyber Tip of the Day: The Power of Authenticator Apps

Stop relying on text messages for your security codes!

If you use Multi-Factor Authentication (MFA), switch your method from receiving a code via text message (SMS) to using a dedicated Authenticator App (like Google Authenticator or Microsoft Authenticator).

• Why it Matters: Scammers can perform a SIM-swap attack to steal your text messages. They cannot steal the codes from a dedicated Authenticator App, making your accounts much safer. It's an easy switch with a huge security benefit!

Our mission is to help you stay one step ahead of internet scammers and protect your digital life. We provide real-world examples of scam emails, text messages, social media posts, and phone calls, showing you how to spot the red flags and identify the telltale signs of a threat. By educating you on these common tactics and explaining how legitimate government agencies and organizations communicate, we empower you to confidently recognize and avoid scams.