CISA: Phishing emails spoofing SBA loan relief webpage

Aug 13, 2020 - 03:56 PM
cybersecurity-hand-lock-graphic_900x400

The Cybersecurity and Infrastructure Security Agency is tracking an unknown malicious cyber actor who is spoofing the Small Business Administration COVID-19 loan relief webpage via phishing emails, the agency announced yesterday.

Sent to various recipients in the Federal Civilian Executive Branch and state, local, tribal and territorial government, the emails include a malicious link to the spoofed SBA website that the cyber actor is using for malicious re-directs and credential stealing, the agency said.

For details, including recommended mitigation actions and other resources, see the CISA alert.

“As we can see, heinous COVID-19-themed fraud schemes continue to perpetuate, and the common denominator seems to be enticing unsuspecting victims to provide funds, passwords or personal identifying information,” said John Riggi, AHA senior advisor for cybersecurity and risk. “To mitigate these threats, educate staff, always independently verify solicitations (even from ‘trusted’ sources), never provide down payments for PPE without verification and reputable references, and be suspect of any solicitations that claim to be affiliated with a government agency.’”

Related News Articles

Headline
AHA podcast: Cybersecurity on the Health Care Front Lines Against AI and Ransomware
Larry Pierce, director of cybersecurity and information security officer for Atlantic Health, unpacks how the growth of artificial intelligence is reshaping…
Headline
Agencies issue guidance on secure connectivity for operational technology
U.S. and international agencies Jan. 14 released guidance on secure connectivity for operational technology environments. Examples of OT environments in health…
Headline
AHA expresses support for bill improving cybersecurity workforce in rural hospitals
The AHA Jan. 14 expressed support for the Rural Hospital Cybersecurity Enhancement Act (S. 2169), legislation that would direct the Department of Health and…
Headline
FBI warns of attacks by North Korean cyber threat group using malicious QR codes
The FBI Jan. 8 released an alert on evolving threat tactics by Kimsuky, a North Korean state-sponsored cyber threat group. As of last year, the group…
Headline
FDA issues guidance on wellness products, clinical decision support software
The Food and Drug Administration today released two guidance documents; one related to low-risk wellness products (including certain wearable devices) and the…
Headline
CDC report finds COVID-19 vaccine for children reduced chances of ED, urgent care visits
The Centers for Disease Control and Prevention Dec. 11 released a report that found last year’s version of the COVID-19 vaccine was 76% effective in preventing…