September 2023
A real phishing attempt targeting NISD received on September 18, 2023.
This sophisticated spear-phishing scam used a compromised account from a trusted source to direct high-profile targets to a custom landing page built to look identical to our NISD login page.
There are a few ways to tell this was a phishing scam:
The URL at the top of the landing page is not our normal URL
The URL ends in .ru, which is a Russian domain
The users receiving this email were not expecting a file from the trusted source