InfoSecBulletin Cybersecurity for mankind
CISA warned that criminals are pretending to be its employees in phone calls in order to trick people into sending them money. “The Cybersecurity and Infrastructure Security Agency (CISA) is aware of recent impersonation scammers claiming to represent the agency,” CISA warned on Wednesday.
“As a reminder, CISA staff will never contact you with a request to wire money, cash, cryptocurrency, or use gift cards and will never instruct you to keep the discussion secret.” “Additionally, the cybersecurity agency shared some helpful tips to avoid falling prey to these scams.”
YouTube geo-blocks at least 4 Bangladeshi TV channels in India
Microsoft Patches Four Critical Azure and Power Apps Vulns
Qilin Ransomware topped April 2025 with 45+ data leak disclosures
SonicWall Patches 3 Flaws in SMA 100 Devices
Top Ransomware Actively Attacking Financial Sector: 406 Incidents Disclosed
Critical (CVSS 10) Flaw in Cisco IOS XE WLCs Allows RRA
CVE-2025-29824
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day
Hacker exploited Samsung MagicINFO 9 Server RCE flaw
CISA adds Langflow flaw to its KEV catalog
Google Fixes Android Flaw (CVE-2025-27363) Exploited by Attackers
If you think you’re getting a scam call from someone claiming to be a CISA employee, never send them money, make a note of their number, and hang up right away.
CISA advised to call at 844-729-2472 (844-SAY-CISA) or report the scam attempts to law enforcement to validate the contact.
In 2024, the average financial loss due to impersonation scams rose to $7,000 from $3,000 in 2019. Based on FTC data, these scams caused over $1.1 billion in losses in 2023, which is three times higher than the amount in 2020.
“Reports show an increasingly blurred line between business and government impersonation scams,” the FTC said.
