InfoSecBulletin Cybersecurity for mankind
CISA warned that criminals are pretending to be its employees in phone calls in order to trick people into sending them money. “The Cybersecurity and Infrastructure Security Agency (CISA) is aware of recent impersonation scammers claiming to represent the agency,” CISA warned on Wednesday.
“As a reminder, CISA staff will never contact you with a request to wire money, cash, cryptocurrency, or use gift cards and will never instruct you to keep the discussion secret.” “Additionally, the cybersecurity agency shared some helpful tips to avoid falling prey to these scams.”
LockBit Claims 33 TB of US Federal Reserve Data
Indonesia’s National data center compromised, $8M ransom demand
ESET Issues Security Patch for Privilege Escalation Flaw
Hacker offer zero-day RCE exploit of Atlassian Jira for Sale
US bans Kaspersky software over Russia ties
China-linked spies target Asian Telcos since 2021
Azad selected expert reviewer for CISA Review Manual 28th Edition
Attackers Target AWS Vaults, Buckets, and Secrets
CISA released Guidance for Modern Approaches to Network Access Security
CISA Releases One Industrial Control Systems Advisory
If you think you’re getting a scam call from someone claiming to be a CISA employee, never send them money, make a note of their number, and hang up right away.
CISA advised to call at 844-729-2472 (844-SAY-CISA) or report the scam attempts to law enforcement to validate the contact.
In 2024, the average financial loss due to impersonation scams rose to $7,000 from $3,000 in 2019. Based on FTC data, these scams caused over $1.1 billion in losses in 2023, which is three times higher than the amount in 2020.
“Reports show an increasingly blurred line between business and government impersonation scams,” the FTC said.
