Have you been warned by the FBI?

Big guy, this is Jay Chou.

I wonder if you have been warned by the FBI?

And just two days ago, someone was warned by the "FBI"!

Why should I put a quotation mark on the FBI? In fact, it is not the real FBI, but someone hacked a mailbox under the FBI and then pretended to be the FBI to initiate a warning email.

FBI, the full name of the United States Federal Bureau of Investigation ( Federal Bureau of Investigation ), is one of the world's most important intelligence agencies in the United States and is affiliated to the United States Department of Justice.

Can the FBI be hacked? What is going on here?

On the late night of November 12, Eastern Time, millions of fake emails were sent from a mailbox named eims@ic.fbi.gov. The address to which this mailbox belongs belongs to a law enforcement enterprise portal under the FBI.

How was it discovered?

Spamhaus is a non-profit organization in Europe that focuses on tracking cybersecurity threats. It tweeted that it tracked terrible emails from FBI email addresses and revealed that these recipients were from the US Internet Number Registration (ARIN) Extracted from the database. :

What do these emails look like? Let's take a look:

Email subject: Emergency: Threats in the system

The main body of the email is to warn the person who received the email: A network security threat has been detected in your network and data has been stolen.

Good guy, if it is paired with a classic FBI Warning red background and white lettering, I am afraid it will be scared to pee.

The FBI quickly responded to the matter, confirming that the email was indeed forged, and carried out technical follow-up processing.

Judging from the current information, it is very likely that the e-mail account eims@ic.fbi.gov has been compromised, and hackers can log in and use this e-mail account.

So the question is, who is behind it, and what is the picture? Is it just a simple prank?

The answer to this question can be found in this fake warning email.

In this email, it is claimed that the so-called "threat in the system" is Vinny Troia . And this person is the founder of Shadowbyte, a dark web intelligence company.

Have you recollected it yet? The founder of a company tracking dark web intelligence was declared a threat.

Soon after the incident, Vinny Troia, the person involved, posted a screenshot of the chat on Twitter:

According to time, a few hours before the warning email happened, a person named pompompurin sent an inexplicable message: "Enjoy!" (Enjoy).

After the email incident, he came again and sent a more provocative message: "Did you enjoy" (Do you enjoy?)

Vinny is very suspicious that the time of this e-mail is the other party's handwriting. According to his personal disclosure, this is not the first time this group has poured dirty water on him:

"Last time they (pompompurin) hacked into the website blog of the National Center for Missing Children and posted a post about me as a pedophile"

But this incident was a good publicity for Vinny and his company, saving a lot of advertising costs.

Finally, let's eat melons and eat melons. What lessons should we learn from this matter?

First of all, the email must be safe. Don't click randomly when you receive an unfamiliar email.

And even if it is an email from a mailbox that you know, it must be more mind-blowing. Important information must be verified through other channels.

In Jay Chou's previous company, someone pretended to be the general manager's mailbox to send an email to HR, asking her to send him salary information. Fortunately, the company's usual safety education is in place, and sensitive information has been confirmed offline for a second time, and no security incident has been caused.

Have you received any evil emails? Tell me about your experience in the comment section?