The Southern Ocean Chamber is sharing latest scam announcement from their partners at New Jersey Cybersecurity & Communications Integration Cell (NJCCIC). They report a recent surge in phishing attacks compromising public sector accounts. These emails often appear to come from trusted local government contacts—health departments, schools, or municipal offices—but the accounts have already been hijacked.

Key tactics observed:

Encrypted emails, attachments, and calendar invites carrying malicious links.

Personalized subject lines and file names to appear legitimate.

Fake DocuSign, SharePoint, and Jotform links requesting login credentials.

Attempts to steal multi‑factor authentication codes.

What to watch for:

Emails referencing documents or reports you weren’t expecting.

Minimal or vague email content from senders you don’t usually exchange files with.

Requests to electronically sign documents when you don’t normally do so.

Takeaway for members:  Remain cautious—even when emails look familiar. Verify unexpected requests before clicking links or entering credentials. Suspicious messages should be reported to IT or NJCCIC.