Security News > 2020 > October > Voter Registration ‘Error’ Phish Hits During U.S. Election Frenzy
The emails purport to come from the U.S. Election Assistance Commission, an independent agency of the United States government that serves as a national resource of information regarding election administration.
The emails subject says "voter registration application details couldnt be confirmed," and the body of the email tells users: "Your Arizona voter's registration application submitted has been reviewed by your County Clerk and some few details couldnt be comfirmed".
Though the email pretends to come from the U.S. Election Assistance Commission, the link in the email sends users to a web page that spoofs ServiceArizona, which is part of the state government of Arizona.
It should be noted that the phishing email reported to KnowBe4 was submitted by a target in Wisconsin - who wouldn't submit a voter registration application in Arizona - another potential error on the side of the cybercriminals.
While it is common for bad actors to solicit data from targets in order to support a variety of fraudulent endeavors, "given the election anglewe cannot ignore the possibility that this phish may be part of an attempt by parties unknown to intervene in the election, either by seeding confusion and chaos in the election process or engaging in some form of election fraud," said researchers.