Project Description 

For this project, I researched two recent cybersecurity incidents using Google News. I chose one article about a phishing scam and another about a ransomware attack. I summarized each one in my own words, explained who was affected, what kind of cyberattack it was, and how people can protect themselves from similar threats. I also evaluated the sources to make sure they were trustworthy. As part of this project, I also completed the CCBC Cybersecurity Training and earned my certificate, which shows my understanding of basic cybersecurity principles and best practices.

Lesson Learned 

Working on this project taught me how real and serious cybersecurity threats are in our everyday lives. I used to think these kinds of attacks only happened to big companies, but now I see how anyone can be a target—just by clicking the wrong link or using a weak password. I learned how phishing scams and ransomware attacks actually work, and how important it is to recognize the warning signs early. It also made me realize how valuable cybersecurity training is, and I'm glad I completed the CCBC course because it gave me tools to better protect myself and others online. This project really opened my eyes to how much we depend on digital security and why it matters so much. 

Cybersecurity in the News Articles 

Google Phishing Scam Exploiting DKIM Authentication 

A sophisticated phishing scam is targeting Google users by sending emails that falsely appear to be from "no-reply@google.com," claiming law enforcement is requesting access to their accounts. These emails utilize Google’s Sites application to craft convincing fake webpages and messages, making them difficult to identify as malicious. According to email security firm EasyDMARC, the scam leverages Google's own systems to bypass DKIM (DomainKeys Identified Mail) authentication, allowing the phishing emails to appear legitimate and evade spam filters. Victims are redirected to fraudulent login pages hosted on sites.google.com, rather than the official accounts.google.com domain. ​ 

Source Evaluation

• Who published the content? The Verge Staff

• Where was it published? The Verge 

• When was it published? April 21, 2025 

• The truthfulness and integrity of the facts: The article references findings from email security firm EasyDMARC and includes statements from affected individuals, providing a credible account of the phishing scam. 

• How is it written and presented? The article aims to inform readers about the phishing scam and offers guidance on how to protect against such threats. 

• Links and Citations: The article includes references to EasyDMARC's findings, and Google's response to the issue.​

Ahold Delhaize Ransomware Breach 

Ahold Delhaize, a leading global food retailer, has confirmed that sensitive data was stolen during a ransomware attack on its U.S. business in November 2024. The cybercriminal group INC Ransom claimed responsibility, posting proof of the breach on its data leak site. Following this, the company acknowledged that files were taken from some of its internal U.S. systems and initiated an investigation to assess the scope of the incident. In response to the attack, the company shut down parts of its IT infrastructure, affecting certain Ahold Delhaize USA brands, pharmacy services, and e-commerce operations. Although it is not yet determined whether customer data was compromised, Ahold Delhaize has promised to inform affected individuals if necessary and has notified law enforcement. Despite the breach, all the company’s stores and online services remain operational. 

Evaluation

• Who published the content? TechRadar Pro Staff 

• Where was it published? TechRadar 

• When was it published? April 18, 2025 

• The truthfulness and integrity of the facts: The article cites official statements from Ahold Delhaize and provides details about the ransomware group's claims, ensuring a balanced and factual report.

• How is it written and presented? The article aims to inform readers about the ransomware attack and its implications for the company and its customers. 

• Links and Citations: The article includes references to Ahold Delhaize's official statements, and the ransomware group's data leak site.

My Cybersecurity Certificate

As part of this project, I successfully completed the CCBC Cybersecurity Training program. This certificate shows that I’ve learned important skills like how to recognize online threats, protect personal information, and follow safe internet practices. It also gave me a better understanding of how to stay secure online, both at home and in the workplace.