The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are warning that Iranian advanced persistent threat (APT) actors are likely intent on influencing and interfering with the U.S. elections to sow discord among voters and undermine public confidence in the U.S. electoral process.
The APT actors are creating fictitious media sites and spoofing legitimate media sites to spread obtained U.S. voter-registration data, anti-American propaganda, and misinformation about voter suppression, voter fraud, and ballot fraud.
The APT actors have historically exploited critical vulnerabilities to conduct distributed denial-of-service (DDoS) attacks, structured query language (SQL) injections attacks, spear-phishing campaigns, website defacement, and disinformation campaigns.
Email message
[NAME], we are in possession of all your information You are currently registered as a Democrat and we know this because we have gained access into the entire voting infrastructure. You will vote for Trump on Election Day or we will come after you. Change your party affiliation to Republican to let us know you received our message and will comply. We will know which candidate you voted for. I would take this seriously if I were you. [blurred] good luck.
Indicators:
- info[@]officialproudboys[.]com
- Vote for Trump or Else!
- ‘we are in possession of all your information You are currently registered’
CWZ Advice
- Do not respond to this email
- Do search in your company network if others have been in contact with this address
- Investigate if their accounts or information might have been leaked to the web
Government advice
References
Download the paper
The video on our channel