<?xml version="1.0" encoding="UTF-8"?><rss version="2.0" xmlns:content="http://purl.org/rss/1.0/modules/content/"
     xmlns:dc="http://purl.org/dc/elements/1.1/"
     xmlns:atom="http://www.w3.org/2005/Atom"
     xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
     xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
     xmlns:georss="http://www.georss.org/georss"
     xmlns:geo="http://www.w3.org/2003/01/geo/wgs84_pos#"
     xmlns:media="http://search.yahoo.com/mrss/">
    <channel>
        <title><![CDATA[Scammer posing as Small Business Administration to steal personal info]]></title>
        <atom:link href="https://usagag.com/2020/08/17/scammer-posing-as-small-business-administration-to-steal-personal-info/" rel="self" type="application/rss+xml" />
        <link>https://usagag.com/2020/08/17/scammer-posing-as-small-business-administration-to-steal-personal-info/</link>
        <lastBuildDate>Mon, 17 Aug 2020 14:42:11 +0000</lastBuildDate>
        <sy:updatePeriod>hourly</sy:updatePeriod>
        <sy:updateFrequency>1</sy:updateFrequency>
        <generator>https://usagag.com</generator>
        <media:content url="/uploads/2020/08/scammer-posing-as-small-business-administration-to-steal-personal-info-scaled.jpg" medium="image">
            <media:title type="html">Scammer posing as Small Business Administration to steal personal info</media:title>
        </media:content>
        <content:encoded><![CDATA[<p>A scammer is sending bogus emails from the US Small Business Administration to steal personal information from unsuspecting Americans, the feds have warned.</p><p>The messages direct potential victims to a malicious webpage disguised as an SBA website that the &#8220;unknown malicious cyber actor&#8221; uses to steal credentials, according to an <strong>alert</strong> from the Department of Homeland Security&#8217;s Cybersecurity and Infrastructure Security Agency.</p><p>The alleged scam is one of several reported attempts by cybercriminals to pose as the federal agency tasked with <strong>distributing billions of dollars in coronavirus relief loans</strong> to struggling businesses.</p><p>The emails — which have been sent to federal, state and local government officials — are doctored to look like they&#8217;re coming from an official SBA account with the subject line &#8220;SBA Application — Review and Proceed,&#8221; the Aug. 12 alert says.</p><p>A link in the message leads to a bogus webpage asking the user to log into the &#8220;SBA Economic Injury Disaster Loan Portal&#8221; with their email address and password, according to the feds. That&#8217;s the same loan program that the SBA inspector general warned last month was <strong>rife with potential fraud</strong>.</p><p>The web address the feds flagged starts with &#8220;leanproconsulting.com.br,&#8221; the website listed for a Brazilian business called <strong>LeanPro Consulting</strong>. The company did not immediately respond to an email seeking comment, and its website was inaccessible when The Post tried to visit it Monday morning.</p><p>The Cybersecurity and Infrastructure Security Agency did not immediately respond to an email asking about LeanPro&#8217;s relationship to the alleged scam, when the suspect messages were received and how many credentials have been stolen.</p><p>Researchers at Malwarebytes have spotted cyberattackers posing as the SBA in three other email scams, one of which involved a similar malicious URL.</p><p>Another sent recipients malware disguised as SBA documents attached to the email, while the third involved a more detailed form asking for banking information and other sensitive personal details, the software firm said in a <strong>blog post</strong> last week.</p>]]></content:encoded>
                <dc:creator><![CDATA[USAGAG]]></dc:creator>
            </channel>
</rss><!--Time: 0.029062032699585-->