strange scam? email claiming to be from the fbi

• Previous message (by thread): strange scam? email claiming to be from the fbi
• Next message (by thread): strange scam? email claiming to be from the fbi
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Quite a bit of discussion on the outages mailing list. It was an 
exploited HTML form on the FBI site.

The text reminds me of the Turboencabulator data sheet.

> Full body of the email:
> Our intelligence monitoring indicates exfiltration of several of your 
> virtualized clusters in a sophisticated chain attack. We tried to 
> blackhole the transit nodes used by this advanced persistent threat 
> actor, however there is a huge chance he will modify his attack with 
> fastflux technologies, which he proxies trough multiple global 
> accelerators. We identified the threat actor to be Vinny Troia, whom is 
> believed to be affiliated with the extortion gang TheDarkOverlord, We 
> highly recommend you to check your systems and IDS monitoring. Beware 
> this threat actor is currently working under inspection of the NCCIC, as 
> we are dependent on some of his intelligence research we can not 
> interfere physically within 4 hours, which could be enough time to cause 
> severe damage to your infrastructure.
> Stay safe,
> U.S. Department of Homeland Security | Cyber Threat Detection and 
> Analysis | Network Analysis Group


-- 
Jay Hennigan - jay at west.net
Network Engineering - CCIE #7880
503 897-8550 - WB6RDV

• Previous message (by thread): strange scam? email claiming to be from the fbi
• Next message (by thread): strange scam? email claiming to be from the fbi
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]