Contact Contact Us

Phishing Scheme Targets Transportation Contractors

An ongoing phishing scheme is harvesting email credentials from transportation contractors by spoofing the Texas Department of Transportation (TxDOT) bidding portal. The phishing page uses a fake tender invitation to trick contractors into furnishing their login credentials for Microsoft Outlook, Gmail, Office 365, Yahoo or AOL. The phishers also use social engineering to invoke a sense of urgency by including a short deadline for submission, which expires on 28 February. The credential harvesting campaign seeks to obtain personal or corporate access probably to steal data or to monetise the access for extortion or business email compromise scams.

[1] Phishers Target Texas Department of Transportation Contractors with Online Bidding Scheme

Ensign InfoSecurity Singapore
30A Kallang Place
Singapore 339213

Tel: +65 6788 2882
Fax: +65 6788 3883