Spear-phishers change their bait to lure high-level feds

When the fish are biting, grab some more bait and throw your hook back into the water.

Attackers targeting high-level federal employees, military leaders and foreign leaders are luring their catches with an e-mail that purports to be from the Center for a New American Security (CNAS), a think tank that has sent a couple of its employees to senior positions in the Obama administration, writes Threatpost’s Paul Roberts.

The initial analysis points to China — again — which would mark the second elaborate phishing attack blamed on the country this summer, Roberts writes.

This new strategy follows a spear phishing attack that Google exposed in June and attributed to Chinese hackers. In that incident, the attackers gained access to officials’ Gmail accounts to monitor their e-mail messages and mess with users’ settings. The sneaky phishing campaign even infiltrated the account of a Cabinet-level official.

The latest phishing attack cashes in on CNAS’ good name with a subject line tied to the organization’s recent report on the detrimental effect of declining satellite capabilities, Roberts writes. Researcher Mila Parkour reported the phishing campaign on the “Contagio” blog and notified Google, Roberts adds.

About the Author

Connect with the GCN staff on Twitter @GCNtech.

Featured

  • business meeting (Monkey Business Images/Shutterstock.com)

    Civic tech volunteers help states with legacy systems

    As COVID-19 exposed vulnerabilities in state and local government IT systems, the newly formed U.S. Digital Response stepped in to help. Its successes offer insight into existing barriers and the future of the civic tech movement.

  • data analytics (Shutterstock.com)

    More visible data helps drive DOD decision-making

    CDOs in the Defense Department are opening up their data to take advantage of artificial intelligence and machine learning tools that help surface insights and improve decision-making.

Stay Connected