The NJCCIC continues to receive reports of scams targeting and impersonating business executives using social engineering tactics. Threat actors perform reconnaissance on organizations to target and impersonate business executives, including chief executive officers.
The NJCCIC recently reported on malicious QR codes used in multiple quishing campaigns impersonating human resources or information technology. The NJCCIC’s email security solution observed a similar quishing campaign attempting to deliver malicious QR codes.
The NJCCIC observed several compromised government email accounts sending phishing emails to the user’s contacts, attempting to compromise additional accounts. Using legitimate accounts increases the likelihood of successful attacks as these messages come from...
The NJCCIC observed an uptick in employment scams that target and exploit individuals seeking employment. Threat actors first perform reconnaissance on their targets, gathering information from various sources, such as past data breaches, publicly disclosed data...
Microsoft Exchange Server 2016 and 2019 will reach end-of-life status on October 14. While these systems will continue to run, they will no longer receive security patches or bug fixes. Additionally, extended support and Extended Security Updates will not be offered.
The NJCCIC received reports of Social Security Administration (SSA) phishing emails, consistent with the SSA’s scam alert earlier this month. The emails contain SSA branding to appear legitimate and claim to be from the SSA. However, upon further inspection, they were sent from...
In direct deposit or payroll diversion scams, threat actors research the targeted organization and identify an employee to impersonate. They typically register a free email address using the employee’s name and utilizing display name spoofing in the messages.
For the first quarter of 2025, the NJCCIC received reports of increased cryptocurrency scams, primarily pig butchering schemes. In these fraudulent investment schemes, threat actors impersonate legitimate individuals or organizations to steal personally identifiable information...
Over the past several weeks, the NJCCIC received reports of unauthorized account access facilitated by phishing campaigns. While the targeted accounts varied, the images in this post originate from a campaign that aims to access users' Microsoft 365 accounts.
Threat actors can use phone numbers obtained from past data breaches and public records to randomly call or send messages claiming to be a member of a loan processing team and providing a loan offer that appears too good to be true. They may provide vague details...
