InfoSecBulletin Cybersecurity for mankind
CISA warned that criminals are pretending to be its employees in phone calls in order to trick people into sending them money. “The Cybersecurity and Infrastructure Security Agency (CISA) is aware of recent impersonation scammers claiming to represent the agency,” CISA warned on Wednesday.
“As a reminder, CISA staff will never contact you with a request to wire money, cash, cryptocurrency, or use gift cards and will never instruct you to keep the discussion secret.” “Additionally, the cybersecurity agency shared some helpful tips to avoid falling prey to these scams.”
400+ IPs Exploiting Multiple SSRF Vulnerabilities
NVIDIA has released update for NVIDIA Riva
CVE-2025-24201
Apple fixes 0-day exploited in “extremely sophisticated attack”
Microsoft’s March 2025 updates fix 7 zero-day, 57 flaws
Ballista Botnet infects 6000 Unpatched TP-Link Routers
CVE-2025-24813
Flaw in Apache Tomcat Exposes Servers to RCE
CISA Adds 3 Ivanti Endpoint Manager Bugs to KEV
Ransomware Attacks Set Records in February: New Data Shows
Cyber attack at Japanese telecom leader NTT hits 18,000 companies
Cyber heist: Pune losses Rs 6007 crore in cyber scam
If you think you’re getting a scam call from someone claiming to be a CISA employee, never send them money, make a note of their number, and hang up right away.
CISA advised to call at 844-729-2472 (844-SAY-CISA) or report the scam attempts to law enforcement to validate the contact.
In 2024, the average financial loss due to impersonation scams rose to $7,000 from $3,000 in 2019. Based on FTC data, these scams caused over $1.1 billion in losses in 2023, which is three times higher than the amount in 2020.
“Reports show an increasingly blurred line between business and government impersonation scams,” the FTC said.
