Proud Boys APT email message

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are warning that Iranian advanced persistent threat (APT) actors are likely intent on influencing and interfering with the U.S. elections to sow discord among voters and undermine public confidence in the U.S. electoral process.

The APT actors are creating fictitious media sites and spoofing legitimate media sites to spread obtained U.S. voter-registration data, anti-American propaganda, and misinformation about voter suppression, voter fraud, and ballot fraud.

The APT actors have historically exploited critical vulnerabilities to conduct distributed denial-of-service (DDoS) attacks, structured query language (SQL) injections attacks, spear-phishing campaigns, website defacement, and disinformation campaigns. 

Email message

[NAME], we are in possession of all your information You are currently registered as a Democrat and we know this because we have gained access into the entire voting infrastructure. You will vote for Trump on Election Day or we will come after you. Change your party affiliation to Republican to let us know you received our message and will comply. We will know which candidate you voted for. I would take this seriously if I were you. [blurred] good luck.

Picture of the proud boys APT email
Screenshot of the proud boys APT email

Indicators:

  • info[@]officialproudboys[.]com
  • Vote for Trump or Else!
  • ‘we are in possession of all your information You are currently registered’

CWZ Advice

  • Do not respond to this email
  • Do search in your company network if others have been in contact with this address
  • Investigate if their accounts or information might have been leaked to the web

Government advice

References

Download the paper

The video on our channel

Share this information