Faith-Based Security Headlines
These updates are shared to help raise the situational awareness of Faith-Based organizations to best defend against, and mitigate the impacts from all-hazards threats including physical security, cybersecurity, and natural disasters.
Suspicious Cyber Activity Reported in FB-ISAO Slack
On 05 September, a member posted a SAR about a phishing attempt on a Faith-Based Organization.
From the Slack post:
…in actual email, all addressees were correct – but the sender’s email was fake. Addressee recognized this and flagged it.
From: (correct sender’s name) XXXXXXXXXXXXXXX
Sent: Tuesday, September 5, 2023 9:16 AM
To: (correct recipient’s name)
Subject:
Hello, is your schedule open to talk a little via email ?
XXXXXXX
Thanks
If you receive something like this, please do not reply.
The next step after a reply is that they generally ask you to go buy gift cards with some crazy story.
Please check carefully for phishing clues:
-no subject
-wrong sender email address
-typos
-Sender signing their name in a way they don’t usually, in this case just “XXXXX”
Analyst Comment:
FB-ISAO Slack is a great source of timely warnings and advice. FB-ISAO members can post recent or ongoing incidents in the “sar” channel (Suspicious Activity Reports). This enables members to be aware of current threats and take immediate preventive measures.
Additional Resources
This week’s FB-ISAO Weekly Advisory was FRONT ROW SEAT TO A RECENT EMAIL SPOOFING INCIDENT. The Weekly Advisory highlights a spoofed email that was received by our own Executive Director. The advisory also provides details on warning signs, suggested actions by individuals and organizations, and reporting recommendations.
Also, on 05 September, FB-ISAO issued an alert on Recent Incidents of Zoombombing. A copy of a 2020 FB-ISAO PSA: The Zoom Effect was attached to the alert.
Get the Daily Awareness Post Delivered to your Email!
More Faith-Based Stories
3-Year-Old Dies in Hot Car Outside Florida Church
NYC: Jewish Man Possible Target in Shooting in Crown Heights
NJ man walks into police HQ with hammer, admits church attack
MI: Grand Blanc Catholic Church vandalized and damaged
TX: Thieves break into Parker County church, pilfer items used in prayer services
NY: Church in Cheektowaga burglarized, volunteer catches alleged suspect
VFC: Synagogues in 12 States Targeted in Hoax Calls to Police
VFC FaithAware Faith-based incidents and articles from Virginia Fusion Center. Also provide resources.
TN: Donelson church congregation responds to Cremation Garden vandalism with forgiveness
WI: Waukesha LGBTQ+ organization forms safety plans ahead of ‘Warriors for Christ Training’
Pre-High Holiday Security Briefing: Greater Metro New York Synagogues, Schools and JCCs
Orthodox Union, CSS join forces to enhance security in US Jewish communities
Religious violence reaches India’s capital as a Hindu mob swarms a church
Church Desecration in Tanzania: Diocese Observing Month-long Prayer, Fasting, Reparation
Canada’s Muslim community focused on Windsor terrorism trial
Millions of Shia Muslim pilgrims flock to Iraq’s Karbala to commemorate Arbaeen
Select All-Hazards Stories
Authorities Discover Backpacks Filled With Ammo, Homemade Explosive At Southern Border
Police Say Man Who Vandalized, Burned Masonic Temple Had Made Prior Threats
How to Bridge the Gap Between Cybersecurity and Physical Security
DHS Awards $20 Million to 34 Organizations in Effort to Prevent Targeted Violence and Terrorism
Record Heat and Severe Thunderstorms National Weather Service
National Hurricane Center: Key Messages regarding Hurricane Lee
WHO airs concerns about global COVID trends
Moderna, Pfizer say updated COVID-19 shots generate strong response against newer
Love, Loss, and Pig Butchering Scams
Hundreds of Scam Pages Uncovered in Major Investment Fraud Campaign
Stored Cross-Site Scripting Vulnerability Patched in Newsletter WordPress Plugin
Thousands of Popular Websites Leaking Secrets
Ransomware attacks on education sector spike in August
July 2023 Cyber Attacks Statistics
Vulnerability Summary for the Week of August 28, 2023
Generative AI Could Revolutionize Email—for Hackers
To Pay or Not to Pay? The Ransomware Dilemma
More Security-focused Content
The FB-ISAO’s sponsor Gate 15 publishes a free daily newsletter called the SUN. Curated from their open source intelligence collection process, the SUN informs leaders and analysts with the critical news of the day and provides a holistic look at the current global, all-hazards threat environment. Ahead of the daily news cycle, the SUN allows current situational awareness into the topics that will impact your organization. To sign-up for The SUN, please sign up below.
This DAP highlights – Suspicious Cyber Activity Reported in FB-ISAO Slack, email spoofing, phishing, and Zoombombing.
Every DAP also has More Faith-Based Stories and Select All-Hazard Stories. These updates are shared to help raise the situational awareness of Faith-Based organizations to best defend against and mitigate the impacts from all-hazards threats including physical security, cybersecurity, and natural disasters.
