Maine DWP Cybersecurity Alert: Phishing Attempt on Maine Water Operators

Maine Department of Health & Human Services sent this bulletin at 01/25/2024 12:01 PM EST

This update is coming to you from the Maine CDC Drinking Water Program.

Having trouble viewing this email? View it as a Web page.

Bookmark and Share

DWP Cybersecurity Alert:
Phishing Attempt on Maine Water Operators

Earlier this month an unknown entity impersonating the Maine CDC Drinking Water Program (DWP) sent an illegitimate email to all Maine water operators. The email requested that operators click on a link or risk having their water license revoked. This type of email is known as a phishing email.

Phishing messages or “bait” can come in the form of an email, text, direct message on social media or phone call. These messages are often designed to look like they come from a trusted person or organization. Phishing occurs when criminals try to trick us into opening infectious links, emails or attachments to steal our personal information (or other important data) or infect our devices. These emails tend to use urgent and threatening language to get recipients to take quick action without thinking.
- Adapted from CISA “Recognize and Report Phishing” Webpage.

The screenshot below shows the phishing email (with personally identifying information redacted). We have included DWP comments to help you identify this email as an illegal and nefarious phishing attempt.

Screenshot of Attempted Phishing Email:

Phishing Email

 

red box

 

Please contact your IT provider or the DWP Water Resources Team (207.287.2070) with any cybersecurity questions or concerns. DWP likely won't have the answer, but we know whom to ask. 

 

Thank you for your hard work providing safe drinking water!

 

 

URLS: