The Cybersecurity and Infrastructure Agency (CISA) sent out an alert warning of an email phishing scam that is attempting to trick users into opening attachments that are designed to look like Department of Homeland Security notifications.
The malicious emails are spoofing email addresses to look as though they are National Cyber Awareness System (NACS) alerts and trick recipients into downloading malware.
CISA encourages users to be wary of unsolicited emails and attempt to verify web addresses and immediately report any suspicious emails. IT also warned users to use caution when accessing emails with links and attachments.
“CISA will never send NACS notifications that contain email attachments,” the CISA alert reads.