Cyber ​​attack: FBI alerts that hackers have sent false warnings from their servers

FBI is hacked and they use their server to send spam emails. (photo: El Siglo de Torreón)

The FBI It is one of the main public bodies that report cyber threats worldwide, for this, in addition to having industry specialists, it also collects data from other sources of information, thus expanding its field of action. Paying attention to all our cybersecurity publications is a highly recommended habit not only for professionals in the sector, but also for private users who, directly or indirectly, may be affected by these risks.

Therefore, for many people, An FBI warning is something to take very seriously, which is why identity theft is relatively common, with many phishing campaigns based on trying to emulate the office of the USA These usually quickly reveal that they are not real. Likewise, just by verifying your email address, mail server and IP address, will be quickly identified as phishing.

Official FBI Tweet.  (screenshot: <a class=Twitter)” height=”1392″ src=”” width=”1232″ />
Official FBI Tweet. (screenshot: Twitter)

However, the surprising news came a few hours ago, when an alleged FBI message began to spread widely. The same entity warned of a “sophisticated chain attack” by a known and dangerous actor, who they identify as Vinny Troia. Something a bit strange, given that Vinny Troia is not a cybercriminal, Troy is the head of security investigations for dark web intelligence firms NightLion and Shadowbyte.

Vinny Troia is the head of security investigations for dark web intelligence firms NightLion and Shadowbyte.  (photo: Vinny Troia)
Vinny Troia is the head of security investigations for dark web intelligence firms NightLion and Shadowbyte. (photo: Vinny Troia)

The surprise came when examining the metadata of the message, since the emails originate from the FBI servers, and the message headers show that their origin is verified by the DomainKeys Identified Mail (DKIM) mechanism, obviously false, and that he accessed the FBI mail servers and, based on them, issued a false alert, with an unfounded accusation against a cybersecurity professional.

Asked by Bleeping Computer about this attack, Troy points to a person or group using the nickname Pompomourin as the possible culprit for the intrusion and the attempted defamation: “previously (pompompurin) hacked the blog of the website of the national children’s center and published information about me as a pedophile.”

Ongoing investigation

Jen Easterly, head of the digital security agency, said a few hours ago that she is fully committed to the FBI and cooperates with whatever is necessary, in fact she pointed out the great challenge of cybercrime and the damages in all sectors, public and private, which they can generate, particularly for increasingly digital economies.

Jen Easterly.  (photo: French-American Foundation)
Jen Easterly. (photo: French-American Foundation)

The investigation now focuses on who, within the FBI and without authorization to do so, sent nearly 100,000 emails. It is not excluded that access to the server was made remotely, but it is not excluded that the person in question was, or had been, at its facilities in Columbia, Washington.

The FBI has confirmed that the content of the emails is false and he’s working to resolve the issue because his help desk is inundated with calls from affected administrators. In a statement, the FBI said it could no longer share information because it was an ongoing situation:

“The FBI and CISA are aware of the incident this morning that involved fake emails from an @ email account. This is an ongoing situation and we are unable to provide any additional information at this time. We continue to encourage the public to beware of unknown senders and urge you to report any suspicious activity. “


Live: Follow Xbox‘s 20th Anniversary Minute by Minute with Worldwide Announcements

5 ways to recover deleted messages on Telegram

Alert in Latin America: fake news on the internet increases by 50%