The US Postal Service (USPS) has recently experienced a surge in cyber-attacks. In response [4], researchers from DomainTools conducted an investigation and released an advisory detailing their findings.


During their investigation [1] [2] [3], the researchers discovered a smishing message with unusual language [4], prompting further investigation. This led to the identification of a high-risk domain and 163 related domains that followed a familiar naming convention for email addresses. Additionally, they uncovered a Facebook account linked to one of these email addresses [1] [2] [3] [4], potentially identifying the threat actor as a suspected Iranian national residing in Tehran [1] [2] [3].

The advisory emphasizes the ongoing threat posed by phishing and smishing campaigns [1] [2] [3], highlighting the potential harm they can inflict on individuals and organizations. Swiftly identifying the individuals and infrastructure behind these campaigns is crucial for minimizing the damage caused. The USPS is just one of many organizations targeted by these campaigns [4], underscoring the need for vigilance and proactive cybersecurity measures [4].


The recent surge in cyber-attacks on the USPS highlights the global nature of cyber threats and the importance of international cooperation in combating them [4]. It is important for individuals to verify the legitimacy of messages before taking action, while organizations should invest in robust cybersecurity solutions and educate employees on best practices [4]. By doing so, the potential harm caused by phishing and smishing campaigns can be mitigated, and the impact on individuals and organizations minimized [3].