The Cybersecurity and Infrastructure Security Agency has indicated that they are tracking an unknown malicious actor who is spoofing the United States' Small Business Administration website as part of a new phishing scheme.
Phishing emails are being sent to Federal Civilian Executive Branch and state, local, tribal, and territorial government recipients, showing a sender of disastercustomerservice@sba[.]gov, and include the subject line SBA Application – Review and Proceed.
The emails include links to the spoofed website, at hxxps://leanproconsulting[.]com.br/gov/covid19relief/sba.gov, which includes a login form in an attempt to steal the usernames and passwords of unsuspecting victims.
The URL filtering included in Acronis Cyber Protect blocks access to known malicious websites, including the one used in this campaign, to prevent users from mistakenly entering sensitive data into a malicious website.
#CISAGov #SBAGov #phishing #Acronis #CPOCNews #CPOC #CyberFit #CyberSecurityNews
_____
Don't get caught unaware. Stay up-to-date on what's happening in the cyber protection world. Subscribe for more news from our Cyber Protection Operation's Center.
Learn more about #CyberProtection: [ Ссылка ]
Acronis CyberFit Summit 2022 - An MSP and IT Leaders Conference - [ Ссылка ]
