image credit: Pixabay

Phishing campaign spoofs local-government websites to rip off small businesses

A foreign hacker has been running a phishing campaign that uses phony versions of local government websites in the United States, targeting small and medium-sized businesses in those communities to steal personal credentials, cybersecurity firm Lookout told StateScoop.

In the phishing scheme, the hacker has sent messages luring victims to replicas of web pages that cities and counties use to register potential vendors. Victims are drawn in by what appear to be solicitations to bid on local-government contracts, said Jeremy Richards, the Lookout researcher who has been tracking the scheme.

Read More on StateScoop