The Federal Bureau of Investigation (FBI) is releasing this Private Industry Notification to highlight a trend of compromised US and foreign government email addresses used to conduct fraudulent emergency data requests to US-based companies, exposing personally identifying information (PII).
While the concept of fraudulent emergency data requests was previously used by other threat actors, such as Lapsus$, the increase in postings on criminal forums regarding the process of emergency data requests and sale of compromised credentials has led to an increase of their use. The FBI encourages organizations to implement the recommendations in the Mitigations section to reduce the likelihood and impact from submission of fraudulent emergency data requests to attempt to gain unauthorized access to PII.
Read more…
Source: U.S. Federal Bureau of Investigation Cyber Division
Related:
- Korea, US to Begin Joint Investment in and Research on Cyber Security in Late May
May 22, 2017
Threats of More intelligent worldwide cyber attacks of these days are strengthening cyber security alliance between Korea and the United States. According to the Korean Ministry of Science, ICT and Future Planning, the Korean government and the US government (Air Force Research Laboratory) will finalize the selection of a research consortium for the start of joint ...
- FDA, Industry Look for Gaps in Cybersecurity
May 18, 2017
The US Food and Drug Administration (FDA) on Thursday kicked off a fortuitously-timed public workshop on medical device cybersecurity, the agency’s third on the subject to date. At the workshop, FDA officials, representatives from industry and researchers are trying to determine the current gaps in regulatory science as it relates to cybersecurity with the aim of ...
- Ransomware attack inflames intelligence scrutiny
May 16, 2017
The “Wanna Cry” ransomware attack producing global shockwaves has renewed focus on the activities of the National Security Agency (NSA) and how the government decides to disclose cyber vulnerabilities to the private sector. The ransomware campaign, which broke out on Friday and has spread to at least 150 countries and 300,000 machines, is widely believed to ...
- Donald Trump signs executive order on cybersecurity
May 13, 2017
President Donald Trump has signed an executive order to increase the White House’s role in the nation’s cybersecurity. The order assigns responsibility for protecting federal networks and critical infrastructure to the executive branch of government. The executive order declares that the heads of executive departments and agencies are to be held accountable for managing the cybersecurity risk ...
- NSA Admits They’re Reviewing Government Use of Kaspersky Software
May 13, 2017
Kaspersky Lab is stuck in the middle of a rather nasty fight between Washington and Moscow as the Russian-based anti-virus provider is being investigated by the US intelligence agencies. Following news that US officials were more and more concerned about how Russian spies could use Kaspersky’s software to spy on Americans and sabotage US systems, the ...
- Wikileaks Unveils CIA’s Man-in-the-Middle Attack Tool
May 5, 2017
Wikileaks has published a new batch of the Vault 7 leak, detailing a man-in-the-middle (MitM) attack tool allegedly created by the United States Central Intelligence Agency (CIA) to target local networks. Since March, WikiLeaks has published thousands of documents and other secret tools that the whistleblower group claims came from the CIA. This latest batch is the ...