Threat Awareness – Compromised U.S. and Foreign Government Emails Used to Conduct Fraudulent Emergency Data Requests

Yesterday, The FBI released a Private Industry Notification (PIN) to warn of a trend of compromised U.S. and Foreign government email addresses used to conduct fraudulent emergency data requests to U.S.-based organizations. The PIN notes that an increase of activity on criminal forums regarding the process of emergency data requests and sale of compromised credentials has led to an increased use of this threat. WaterISAC recommends members review the PIN and implement the recommended mitigations listed. Access the full PIN at ic3.gov.