- Facilitate user awareness training to include these types of phishing-based techniques.
- Confirm requests from senders via contact information obtained from verified and official sources.
- Review the Don't Take the Bait! Phishing and Other Social Engineering Attacks NJCCIC product for more information on common phishing and social engineering attacks.
- Ensure multi-factor authentication (MFA) is enabled for all online accounts.
- If you suspect an account has been compromised, change the account's password immediately and add a secondary authentication method.
- Report other malicious cyber activity to the NJCCIC and the FBI's IC3.
