The FBI has warned that at least nine states had their elections officials targeted by an invoice-themed phishing campaign last October, CyberScoop reports.
Attackers have leveraged compromised email addresses to deliver messages with similar attachments on at least three separate days in an effort to exfiltrate login credentials and may have had "sustained, undetected" election administrator systems access but the success of the operation remains uncertain, according to the FBI warning.
"The FBI judges cyber actors will likely continue or increase their targeting of US election officials with phishing campaigns in the lead-up to the 2022 midterm elections," said the notice.
The phishing campaign should prompt continued vigilance among election administrators, said Democracy Fund Senior Advisor on Elections Tammy Patrick.
"We must focus on the 2022 tasks at hand: implementation of new district lines and the precincting of voters; securing proper resources, poll workers, and facilities for the primaries (and the general) to properly serve voters; and ensure that attempts like this are not successful," Patrick said.
Sixty thousand emails from U.S. State Department accounts were noted by a staffer working for Sen. Eric Schmitt, R-Mo., to have been exfiltrated by Chinese threat actors during the widespread compromise of Microsoft email accounts that commenced in May, according to Reuters.
Threat actors have leveraged the ZeroFont phishing attack technique, which initially involved the insertion of hidden characters or words in emails to evade security detection systems, to modify message previews as shown on Microsoft Outlook and other email clients, BleepingComputer reports.
BleepingComputer reports that individuals who have filed claims against bankrupt cryptocurrency lender Celsius have been subjected to phishing attacks involving the impersonation of the lender's claims agent, Stretto.
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news