About Stacey Ehling

This author has not yet filled in any details.
So far Stacey Ehling has created 57 blog entries.

FIFA World Cup Giveaway Scam

By |2026-07-16T13:02:22-04:00July 16th, 2026|

The NJCCIC has observed a phishing campaign claiming recipients have been selected to enter a giveaway for a prize tied to the FIFA World Cup. This type of free-prize-at-the-cost-of-a-shipping-fee scam tricks users into providing their credit card details to an attacker. The messages claim the offer expires on the day of receipt, and the subject [...]

Denial-of-Service Attacks

By |2026-07-02T10:17:34-04:00July 2nd, 2026|

On Friday, June 26, the Everbridge mass emergency notification system experienced an outage due to a distributed denial-of-service (DDOS) attack, which lasted overnight until June 27. Additionally, on June 28 the US National Weather Service was targeted in a DDOS attack that cause an outage of a few hours. Responsibility for both incidents were claimed [...]

Adobe Warning: Sign In to Review & Approve

By |2026-06-04T13:30:14-04:00June 5th, 2026|

Please Sign In to Review The NJCCIC observed a phishing campaign impersonating Adobe document-completion notices. These phishing emails appear to originate from adobesign[@]adobesign[.]com, the official Adobe Acrobat email address, which the threat actors have likely spoofed . The messages include a link to a counterfeit Microsoft Authentication page. The page presents the user's organization branding [...]

“Action Required” Notices May Deliver Malware

By |2026-06-04T13:30:46-04:00June 4th, 2026|

“Action Required” Notifications Deliver Malware Official “Action Required” notifications alert users of pending tasks, account verifications, system issues, device security updates, expired payment methods, or other concerns that require immediate attention. However, cyber threat actors use these notifications as a common social engineering tactic to lure potential victims into clicking links, capture login credentials, steal [...]

Invoice Over Due? Beware

By |2026-05-21T21:53:36-04:00May 21st, 2026|

The NJCCIC observed several business email compromise (BEC) campaigns featuring a message chain targeting Accounts Payable departments. The messages appear to be a previous conversation thread from an impersonated executive at the targeted organization regarding an overdue invoice. One of the messages from the impersonated executive directs the sender to the organization's Accounts Payable contact. [...]

The Rise of Botnets & DDoS Attacks

By |2026-05-07T13:34:56-04:00May 7th, 2026|

A botnet is a network or collection of internet-connected devices that have been infected with malware and are controlled remotely by threat actors. These devices include servers, routers, webcams, DVRs, smart TVs, set-top boxes, smart light bulbs, and other internet-connected equipment. Botnets are set up to exploit and compromise consumer and corporate devices through phishing [...]

FIFA World Cup Cybersecurity Awareness

By |2026-04-15T15:59:32-04:00April 15th, 2026|

The Transportation Security Administration (TSA) is issuing this Cybersecurity Awareness Message (CAM) to provide our industry partners with best practices, current cybersecurity risks, recent incidents, and planning considerations ahead of the 2026 FIFA World Cup (FWC 26) events. This CAM is not in response to any specific threat or incident. The FWC 26 will be [...]

Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure

By |2026-04-07T16:45:51-04:00April 7th, 2026|

The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Environmental Protection Agency (EPA), Department of Energy (DOE), and United States Cyber Command – Cyber National Mission Force (CNMF), hereafter referred to as the authoring agencies, have released a Joint Cybersecurity Advisory urgently warning US organizations of ongoing cyber [...]

Wire Transfer Fraud Warning

By |2026-03-26T11:52:45-04:00March 26th, 2026|

Uptick in Fraudulent Wire Transfers Resulting From Account Compromises The NJCCIC continues to receive reports of compromised accounts of public and private sector New Jersey organizations resulting from compromised credentials and phishing emails. Consequently, the NJCCIC also observed an uptick in fraudulent wire transfers from these compromised accounts. Account compromises enable threat actors to access [...]

Ransomware: Anthem Blue Cross

By |2026-03-12T14:08:19-04:00March 12th, 2026|

Anthem Blue Cross Phishing Campaign Deploys Ransomware The NJCCIC observed an Anthem Blue Cross phishing campaign targeting New Jersey State employees. The sender’s display name includes Anthem Blue Cross, the target organization’s domain name, and “Eft Settlement.” However, the sender’s email address does not reference Anthem Blue Cross. The email signature purports to be from [...]

Go to Top