Security Intelligence -
FBI Email Account Abused to Send Out Warnings of Fake Cyberattacks
Someone used an FBI email account to send out messages warning recipients of fake cyberattacks that targeted their systems.
Highlights of the Hack
According to Bleeping Computer, researchers at the Spamhaus Project observed two waves of fake emails reaching more than 100,000 mailboxes on November 13, 2021.
All the emails originated from “[email protected],” a legitimate email account associated with the FBI’s Law Enforcement Enterprise Portal (LEEP).
The messages warned recipients that a threat actor had infiltrated their systems and stolen their data.
“Our intelligence monitoring indicates exfiltration of several of your virtualized clusters in a sophisticated chain attack,” the email read, as quoted by Bleeping Computer. “We tried to blackhole the transit nodes used by this advanced persistent threat actor, however, there is a huge chance he will modify his attack with fastflux technologies, which he proxies through multiple global accelerators.”
The email even went on to identify who was “responsible” for the attack.
“We identified the threat actor to be Vinny Troia, who is believed to be affiliated with the extortion gang TheDarkOverlord. We highly recommend you