World

Fake hacking warnings sent from secure FBI server

FBI confirm large number of emails came from address on Law Enforcement Enterprise Portal

Updated 4 years ago · Published on 14 Nov 2021 11:00AM

Fake hacking warnings sent from secure FBI server
Independent security group Spamhaus reports a large number of fake emails were sent in two waves early yesterday from an address on the government’s Law Enforcement Enterprise Portal, which is used by multiple government agencies. – AFP pic, November 14, 2021

WASHINGTON – Fake emails purportedly from the United States Homeland Security Department warning of cyberattacks were sent out yesterday from a secure FBI computer server, computer security experts said.

The FBI confirmed independent security group Spamhaus’ report that a large number of fake emails were sent in two waves early yesterday from an address on the government’s Law Enforcement Enterprise Portal, which is used by multiple government agencies.

Some of the emails, sent in the name of the Homeland Security cyber threat detection group, were headlined: “Urgent: threat actor in systems”.

They warned recipients that they were the target of a “sophisticated” hacking attack from a known extortion gang, according to Spamhaus.

Independent cyber security expert Brian Krebs said he, too, had received a fake email from the FBI address, though with a different message.

In a statement, the FBI and the DHS Cybersecurity and Infrastructure Agency confirmed the incident, without offering details.

“The FBI and CISA are aware of the incident this morning involving fake emails from an @ic.fbi.gov email account,” they said in a statement.

“This is an ongoing situation and we are not able to provide any additional information at this time. The impacted hardware was taken offline quickly upon discovery of the issue. We continue to encourage the public to be cautious of unknown senders and urge you to report suspicious activity,” it added.

There was no indication of how the emails were sent – whether by someone using legitimate access to the server or a hacker from outside. – AFP, November 14, 2021

Related News

Malaysia / 4mth

MACC part of international operation to dismantle Leakbase cybercrime forum

Malaysia / 5mth

SMEs most vulnerable to data breaches and hacking – expert

Malaysia / 10mth

PDRM Counter Terrorism collected early intelligence on Al-Qaeda 22 months before 9/11 attacks

Malaysia / 2y

Beware of ‘wedding invites’ carrying malware, says Bukit Aman

Malaysia / 2y

Home Ministry looking into FBI’s placement of 3 Muslim NGO leaders on terrorist list

Business / 2y

Man who threatened Biden dies in FBI raid: report

Spotlight

Malaysia

“There are traitors among us waiting to topple Aminuddin” - Loke

World

Thailand pub fire death toll climbs to 32 as negligence probe intensifies

World

Cambodian casino tycoon's empire allegedly links to major cyber scam compound

Malaysia

Rumours rife over KJ contesting Negeri polls, possibly in Rembau

Malaysia

DAP Melaka moves into opposition benches after withdrawing from state government

Malaysia

Malaysia records 17.5 million international tourist arrivals from January - May

Malaysia

Cops probe viral incident of man being forced into Proton Waja

Malaysia

Pregnant woman accused of stealing: Lotus's apologises, takes disciplinary action

You may be interested

World

US reimposes Iran blockade as Hormuz Strait conflict escalates

World

Cambodian casino tycoon's empire allegedly links to major cyber scam compound

World

US strikes Iranian missile sites as Tehran warns of wider energy disruption

World

Sexual violence against women and children remains deeply entrenched in India despite legal reforms

World

Thailand pub fire death toll climbs to 32 as negligence probe intensifies

World

6.5-magnitude earthquake strikes off Southern Philippines, aftershocks expected

World

One dead, another missing after boat catches fire and sinks near Alcatraz island