Over the past several weeks, the NJCCIC received reports of unauthorized account access facilitated by phishing campaigns. While the targeted accounts varied, the images in this post originate from a campaign that aims to access users' Microsoft 365 accounts.
Threat actors can use phone numbers obtained from past data breaches and public records to randomly call or send messages claiming to be a member of a loan processing team and providing a loan offer that appears too good to be true. They may provide vague details...
The NJCCIC has reported various classic sextortion scams in the past. Threat actors continue to utilize similar messaging but different domains, IP addresses, and cryptocurrency wallet addresses in their schemes. The NJCCIC received reports of the latest ongoing scheme.
Authentic bank notifications can help inform users of bank account activity, including balances and transactions. However, threat actors continue to impersonate banks and develop convincing messages that claim to involve bank account activity. These messages appear legitimate...
Threat actors continue to exploit trusted financial software through impersonation, phishing emails, and fraudulent invoices or transactions. They can sign up for free accounts for legitimate software and target potential victims from within those services.
Threat actors can perform reconnaissance by searching for and weaponizing publicly disclosed data and using a variety of impersonation techniques to convince their target that they are known and trusted parties involved in real estate transactions.
Individuals and businesses may use trusted accounting software to keep track of finances, generate invoices, and run payroll. Accounting software can also automate bookkeeping, create reports, analyze financial trends, and organize and manage data, making tax season easier.
Threat actors continue to take advantage of the increased adoption of QR code scanning, as users are typically quick to scan QR codes without a second thought and are unaware of the potential risks. In quishing campaigns, threat actors impersonate trusted organizations...
The NJCCIC received reports of a business email compromise (BEC) campaign circulating using a compromised emergency management email account. The phishing email referenced a contract and directed the recipient to click a link to view a related document.
Last week, the NJCCIC reported increased phishing attempts targeting NJ state employees by impersonating the IRS. Proofpoint analysts noted a rise in tax-themed phishing campaigns, particularly as tax deadlines approach in the US and the UK.
