FBI email hack spreads fake security alerts. Here’s what to do…

2021-11-13 20:50

Well-known email tracking organisation Spamhaus, which maintains lists of known senders of spams and scams, is warning of a fraudulent "FBI/Homeland Security" alert that has apparently been widely circulated to network administrators and other IT staff in North America.

Urgent: Threat actor in systems Our intelligence monitoring indicates exfiltration of several of your virtualized clusters in a sophisticated chain attack.

It is merely evidence that the crooks behind this disinformation campaign have focused primarily on email addresses that seem to be associated with network adminstration, in the same way that contact email addresses picked deliberately from podcast feeds would probably go to people who record or produce podcasts.

As you can see in the screenshot above, the email also plausibly suggests that US law enforcement and security services can't currently blocklist or take down the servers being used by the "Attackers" for at least four hours, because they need to keep those servers online as part of an intelligence gathering operation.

Either the government's own well-known cybersecurity information portals, or cybersecurity community sites, would have further information by now.

Not enough time or staff? Learn more about Sophos Managed Threat Response:Sophos MTR - Expert Led Response ?24/7 threat hunting, detection, and response ?..

News URL

https://nakedsecurity.sophos.com/2021/11/13/dhs-warning-about-hackers-in-your-network-dont-panic/

#email #FBI #hack #security