1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • US government agencies are falling victim to some very obvious at

    From TechnologyDaily@1337:1/100 to All on Thu Jan 26 15:15:03 2023
    US government agencies are falling victim to some very obvious attacks

    Date:
    Thu, 26 Jan 2023 15:02:23 +0000

    Description:
    Crooks are using legitimate software to steal money from US government agencies and employees.

    FULL STORY ======================================================================

    The use of legitimate remote monitoring and management (RMM) tools among cybercriminals targeting government firms have gotten so widespread that US Federal law enforcement and intelligence agencies have been forced to issue a joint warning.

    In their alert, the NSA, CISA, and MS-ISAC said they discovered malicious activity inside the networks belonging to multiple federal civilian executive branch (FCEB) agencies.

    The organizations were prompted to do the analysis after cybersecurity researchers Silent Push published their report in October 2022. To do that, they deployed EINSTEIN - a federal civilian executive branch (FCEB)-wide intrusion detection system (IDS) operated and monitored by CISA, to analyze the state of the networks. Fake help desk emails

    What they found was linked to a widespread, financially motivated phishing campaign Silent Push had earlier referred to.

    The crooks start by sending fake help desk phishing emails to email addresses belonging to people working for various government institutions.

    "The authoring organizations assess that since at least June 2022, cyber criminal actors have sent help desk-themed phishing emails to FCEB federal staff's personal, and government email addresses," it says in the alert. "The emails either contain a link to a 'first-stage' malicious domain or prompt
    the recipients to call the cybercriminals, who then try to convince the recipients to visit the first-stage malicious domain." Read more

    Scammers are spoofing official UK Government Energy Support Scheme websites


    Chinese government hackers apparently stole millions in Covid benefits


    Here's our list of the best ID theft protection tools right now

    The goal of the campaign is to have the victims download RMM, in an attempt
    to refund the money accidentally paid for software (the victims never really paid for anything, but thats part of the fraud scheme). Once they download
    and run the software, the crooks will try and get them to log into their bank accounts. If that happens, they find a way to steal the money.

    "Although this specific activity appears to be financially motivated and targets individuals, the access could lead to additional malicious activity against the recipient's organizationfrom both other cybercriminals and APT actors," the organizations further stated.

    "Malicious cyber actors could leverage these same techniques to target National Security Systems (NSS), Department of Defense (DoD), and Defense Industrial Base (DIB) networks and use legitimate RMM software on both work and home devices and accounts." Here is our list of the best firewalls today

    Via: BleepingComputer



    ======================================================================
    Link to news story: https://www.techradar.com/news/us-government-agencies-are-falling-victim-to-so me-very-obvious-attacks


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)