About Stacey Ehling

This author has not yet filled in any details.
So far Stacey Ehling has created 38 blog entries.

Cyber Security Attitudes Report: Oh Behave!

By |2025-10-08T11:17:07-04:00October 8th, 2025|

Oh Behave! The Annual Cybersecurity Attitudes and Behaviors Report 2025 Each year, the National Cybersecurity Alliance releases research to better understand the public’s security behavior and to act as a call to action for better secure habits online. What is Oh Behave!? Oh Behave! is our annual report examining global cybersecurity attitudes, behaviors, and trends. [...]

Cybersecurity Awareness Month

By |2025-10-03T13:57:30-04:00October 3rd, 2025|

October is Cyber Security Awareness Month! This year’s theme, Stay Safe Online, is all about the simple ways to protect yourself, your family and your business from online threats. Small actions can make a big difference, and this year the National Cybersecurity Alliance is focusing on the Core-4 steps anyone can take to boost their online [...]

Proof of Payment Scams

By |2025-09-18T13:51:56-04:00September 18th, 2025|

The NJCCIC observed a malware campaign sent to New Jersey State employees, purporting to be proof of payment. The malicious emails contain a ZIP file labeled “Proof Of payment.001” with a SHA-256 hash. The ZIP file appears legitimate but includes a Microsoft EXE file labeled “u1ugeglmfc8xvoc” that drops several files, including a PowerShell script. According [...]

NJ Tax Refund & NHTSA SMisHing & TOAD Scams

By |2025-09-18T13:54:31-04:00September 11th, 2025|

Too Good to Be True: Fraudulent SMS Text Message Regarding Tax Refund Circulates A new wave of SMS text phishing messages (SMiShing) is being sent to NJ residents and those in other states nationwide. Like previous SMiShing campaigns referencing motor vehicle violations and toll fees, these text messages impersonate the New Jersey Department of the [...]

Municipality Impersonation Scam

By |2025-09-05T12:22:31-04:00September 5th, 2025|

Local Municipality Impersonation to Steal Data and Funds The NJCCIC received reports of threat actors impersonating multiple New Jersey local municipalities to steal sensitive data and funds and exploit public trust. Threat actors take advantage of residents who interact with their local municipalities regularly and are more likely to trust communications appearing to be official. [...]

Fake Help Desk Scam

By |2025-08-28T13:51:23-04:00August 28th, 2025|

The NJCCIC observed a new adversary-in-the-middle (AiTM) phishing campaign aimed at harvesting credentials. This campaign starts with an email claiming to be from the help desk, with a link provided to reset or retain the current password. Upon clicking the provided link, users are directed to a Loveable.app math-based CAPTCHA, which helps threat actors bypass [...]

Docusign Phishing Scam

By |2025-08-14T13:52:12-04:00August 14th, 2025|

The NJCCIC received reports of a phishing scam abusing the legitimate Docusign platform and impersonating a New Jersey organization. In the Docusign envelope email notification, the impersonated organization’s name appears in the sender’s display name and the body of the email, and the sender’s domain name displays the legitimate docusign.net domain. However, the body of the email [...]

Global Conflict: Increase Cyber Vigilance

By |2025-06-13T14:19:42-04:00June 13th, 2025|

The NJCCIC assesses that heightened geopolitical tensions and military confrontation in the Middle East significantly increase the risk of offensive cyber operations by both nation-states and those sympathetic to them and their ideology. While the primary targets of these cyber activities may be the entities in the conflict, the interconnected nature of our global digital [...]

June: Internet Safety Month

By |2025-06-05T10:50:23-04:00June 5th, 2025|

This is Online Safety Month, take a few moments to refresh your knowledge on some online safety basics. Behaviors like using strong passwords, turning on multi-factor authentication (MFA), recognizing and reporting phishing, and updating your software can go a long way in helping you to stay safe online! Click here to get more tips and [...]

Google Chrome Vulnerabilities

By |2025-06-04T10:45:53-04:00June 4th, 2025|

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged-on user. Depending on the [...]

Go to Top