The FBI in a new advisory is warning the public about cybercriminals who have created fake domains attributed to the law enforcement agency.
According to the bureau, it has observed unattributed cyber actors registering numerous domains that spoof legitimate FBI websites.
These spoofed domains and email accounts are used by nation-state actors and hackers to gather personal information and distribute false information.
These domains are created with slightly altered characteristics of legitimate domains, according to the FBI.
A spoofed domain may feature an alternate spelling of a word, or use an alternative top-level domain, such as a “[.]com” version of a legitimate “[.]gov” website. Members of the public could unknowingly visit spoofed domains while seeking information regarding the FBI’s mission, services, or news coverage. Additionally, cyber actors may use seemingly legitimate email accounts to entice the public into clicking on malicious files or links.
Although the FBI didn’t mention any specific nation-state or hacking group responsible, it listed dozens of spoofed FBI-related domains:
Read Next: FBI: Be Wary of Using Hotel Wi-Fi for Remote Work
Identified Spoofed Domains | ||
agenciafbi.ga | fbiigovv.com | infofbi-unit.com |
authefbi.ga | fbi-intel.com | johnsonfbi.com |
cyber-crime-fbi.org | fbikids.com | legalienfbi.com |
fbi.camera | fbimaryland.org | plapper-fbi.com |
fbi.cash | fbimaxwell.com | powerfulfbi.ninja |
fbi.ca | fbimostwanted.info | us-fbigov.com |
fbi.health | fbi-news.com | virtualfbi.com |
fbi.studio | fbinews.ga | xalienfbi.com |
fbi.systems | fbinews.online | x-alienfbi.com |
fbi.xn--mgbayh7gpa | fbinigeria.org | fbi-fraud.com |
fbi0.com | fbi-ny.com | fbidefense.com |
fbibau.us | fbioffice.ml | fbienglish.com |
fbi2.com | fbi-official.com | fbifrauddepartment.org |
fbi-unit.net | fbiofficial.online | fbifraud.primebnkonline.com |
fbi3262.live | fbione.com | fbiglobalgp.com |
fbi7.cn | fbiopenthedoor.icu | fbigov.art |
fbi9.com | fbiorganisation.online | fbi-gov.network |
fbi9.me | fbiorganization.club | fbigrantinvestigation.com |
fbiagent.online | fbipedophilerings.com | fbiinspectionunit.com |
fbi-augustyn.pl | fbiphoto.com | fbi-police.com |
fbiaustralia.com | fbireserveco.biz | fbi-c-d.com.co |
fbibau.de | fbireport.us | fbicyberdivision.com |
fbi-bau.de | fbiusagov.online | hdqkfbi.cn |
fbi-biz.com | fbiurl.com | ic-fbi.org |
fbiboston.xn--mgbayh7gpa | fbiusagov.com | fbiwarning.club |
fbi-c.com.co | fbiusgov.com | fbi-cd.com.co |
Registered Spoofed Domains but Currently Unable to Resolve | ||
fbihelp.org | fbi-belote.com | fbilibrary.ml |
fbigiftshop.shop | fbispassport.gq | fbi-pay.com |
fbiboston.com.jo | fbi99.cn | fbi2000.com |
fbiusa.net | fbi.com.jo | fbipublicidad.com |
fbi-usa.us | fbi058.com |
The FBI recommends verifying the legitimacy of the website, not opening emails or attachments from unknown sources, ensure systems and applications are up to date, using two-factor authentication and other cybersecurity measures to combat these attacks.
If you enjoyed this article and want to receive more valuable industry content like this, click here to sign up for our digital newsletters!
Leave a Reply