Spamhaus: Fake FBI warnings from real FBI servers

From our friends at Spamhaus via Twitter today (Saturday, November 13th), here's a warning about fraudulent US Federal Bureau of Investigation (FBI) emails that are sending from IP addresses actually used by the FBI.

"We have been made aware of "scary" emails sent in the last few hours that purport to come from the FBI/DHS. While the emails are indeed being sent from infrastructure that is owned by the FBI/DHS (the LEEP portal), our research shows that these emails *are* fake.

"These fake warning emails are apparently being sent to addresses scraped from ARIN database. They are causing a lot of disruption because the headers are real, they really are coming from FBI infrastructure. They have no name or contact information in the .sig. Please beware!"

You can find a screenshot here and here's a report on this event from NBC News. And here's Brian Krebs, explaining how it was done.

[ H/T: Jennifer Nespola Lantz ]

Post a Comment