Feature Search

Spear phishing attacks target special interests

A sample of what a "spear phishing" e-mail or request for information might look like. Airmen are encouraged to pay close attention to what information is being asked of them and when in doubt, contact the organization that claims to be requesting the info and verify it. (U.S. Air Force photo illustration)

A sample of what a "spear phishing" e-mail or request for information might look like. Airmen are encouraged to pay close attention to what information is being asked of them and when in doubt, contact the organization that claims to be requesting the info and verify it. (U.S. Air Force photo illustration)

ANDERSEN AIR FORCE BASE, Guam -- Imagine receiving this e-mail:

"Pre-order tickets for Breaking Benjamin & Metallica USO show!" the message goes on to say: "The USO in company with Breaking Benjamin and Metallica will put on a private concert at the Top of the Rock for military members. Space will be limited, so sign up for your tickets now! Limit one per military member for $5. www.USO.org/BrBenj_Metallica_TotR.html. Tickets will be emailed out to the first 100 individuals who sign up."

Who wouldn't want to see a private concert with Breaking Benjamin and Metallica? There aren't many people who would say no. So you go to the webpage, and it asks you to fill out a form for your ticket. You provide your name, rank, unit, office symbol, phone number, email address, and credit card information to buy the ticket. When you hit the confirm button nothing happens, and so you start trying to find out who to call since the webpage must be broken. You find out that there is no such concert scheduled, and when you check your bank account that evening it is empty. Your office and unit also start receiving unsolicited phone calls from unknown persons asking for confidential data using your name and information as credentials. Congratulations! You are now a victim of a spear phishing attack.

What is a spear phishing attack?

"Spear phishing" is a type of social engineering attack that is targeted at a specific group of individual or organizations. A common spear phishing attack would be a mass email to the base requesting confirmation of user names and passwords. The email would normally include a hyperlink to a website where you will be asked for personal information: Unit/Office symbol, phone number, full name and rank, username, email address, password, and the name of your supervisor or commander.

A current spear phishing attack facing military members targets USAA members (https://www.usaa.com/inet/ent_utils/McStaticPages?key=2009_03_phishing_scam). The perpetrators of these attacks may be hacker groups, like Ghostnet, terrorist and criminal organizations, or in some cases even state sponsored groups seeking sensitive information.

The purpose of these attacks is to gather information which can be used to access our networks and sensitive information. Rarely do these attacks end in destruction to the network itself as that would deprive the attacker of further information. The information garnered may be used for counter-intelligence, to build counterfeit credentials which will be more accurate and less likely to be caught, or to sell on the black market to hostile organizations.

Alternatively the attacker may not request any information from you, but may instead include a file or hyperlink. The attachment will contain software, which once installed on your system, will monitor all activity on the system and then report it back to the attacker. This may be based upon a specific program or piece of software used by the targeted group such as an update for IMDS, or new benefits for members who have deployed or are married.

Not all spear phishing is done via email. It may come in the form of a flyer that you see either on base or in the general vicinity that offers special rewards or benefits to military members. By seeking the source of the flyer, either by calling a phone number listed on it, or by visiting a website listed on it. Other methods include calling an office using details overheard in a conversation or stolen via a previous attack. The caller will claim to need information that is FOUO, Privacy Act, or even classified. The tactic involves the caller claiming to be someone whose credentials will pressure you to provide the information by gaining sympathy, appealing to your desire for camaraderie, or by fear of reprisal.

A newer threat that has risen recently is a spear phishing attack referred to as "whaling." Whaling is a spear phishing attack which targets the top layer of management and command in an organization. The purpose of the attack is to gain access to high level information and resources. An example of this was the attack on SAIC (a government contractor) in 2007, where 580,000 military members private and financial information was stolen.

All of these methods of attack are preventable, and though often difficult to distinguish from a legitimate communication, there are ways to avoid falling prey.
1. Always digitally sign emails
2. Never follow a hyperlink in an email which is not digitally signed
3. When a caller requests information that is Privacy Act Protected...DON"T GIVE IT!
4. Never divulge FOUO, Privacy Act, or classified information over the phone
5. Confirm credentials: If they are who they say they are, then you should be able to confirm it through their unit
6. When confirming an identity or authorization, do not utilize information provided by them as it may be false as well
7. No network technician or unit will ever ask for your username and password via email or over the phone, nor will they provide them to you via email or over the phone-if you get an email that looks legit, but asks for that info report it immediately to the COMM Focal Point and your unit IAO or CSA
8. Facebook, MySpace, YouTube, and Twitter are not the places for storing or discussing operation information

For more information contact your Information Assurance Officer/Manager, Client Support Administrator, Comm Focal Point (366-COMM/2666) or Wing Information Assurance Office (366-1077)

Social Media

Facebook Twitter
Not just a right - It's your responsibility. #Vote
Tomorrow (Jan 31st) CE Customer Service and both Andersen Family and Unaccompanied Housing Offices will be closed from 11 A.M.–4 P.M. For emergencies, please see additional information below: CE Customer Service: For any emergency issues, please call 366-2916/2917/2918. All other non-emergency issues can be sent to the CE Customer Service email org box at 36ces.service@us.af.mil. Housing Office: For any urgent Housing matters, please call 366-6240 or 653-4731. Normal operating hours will resume Monday, 3 February. Thank you, 36th Civil Engineer Squadron
The Readiness & Emergency Management Flight will be conducting training today (Jan 30) from 7 A.M. to 4:30 P.M.. It will involve personnel driving around base in MOPP 4 and setting out detectors on main base. It is all for training purpose only.
Congratulations to our 4th Quarterly Award winners! Airman of the Quarter: SrA Tiffany Arquette- 36th Mission Support Group Non-commissioned Officer of the Quarter: SSgt Bryan Koch- 36th Mission Support Group Senior Non-commissioned Officer of the Quarter: MSgt Coreena Dejesus-36th Wing Staff Agency Company Grade Officer of the Quarter: 2Lt Megan Barrick- 36th Maintenance Group Civilian Category I of the Quarter: Mr. Nathan Atalig- 36th Mission Support Group Civilian Category II of the Quarter: Mr. Shawn McMahon – 36th Mission Support Group Civilian Category III of the Quarter: Ms. Lucy Benavente - 36th Wing Staff Agency Honor Guard of the Quarter: SrA Brandi Dennis – 36th Communications Squadron Volunteer of the Quarter: SSgt Duawana Robinson – 36th Maintenance Group Team of the Quarter: Family Health- 36th Medical Group
Don't miss this great training opportunity on Sexual Assault Awareness, Prevention, and Bystander Intervention, 31st Jan, 11 A.M. at the Meehan Theater. This event is FREE and open to all! Joint Region Marianas
Andersen is proud to host the U.S. Navy's Tritons!
Congratulations to Staff Sgt. Jolesa Scott from the 36th Force Support Squadron team for being recognized as one of Team Andersen's Best! Great job!
#TeamAndersenDYK the fire prevention experts recommend to never leave open flames or cooking unattended, to check lint traps regularly as well as checking electrical outlets to make sure they are being used properly. In addition, family members of all ages should know and follow a shared emergency escape plan. Andersen firefighters recommend that, in case of fire, residents use their established escape plan and proceed to a designated rally point, a safe distance away from the flames and smoke. Once outside, immediately call 911 and describe the situation to dispatchers as calmly as possible. Fires happen sporadically, so please pay attention to your housekeeping, your surroundings and when you’re cooking or even just near a flame. #safety
Calling all football fans and history buffs!!! Immediately after World War II, the American military stationed in the South Pacific began playing full-contact football - pads and all. Andersen Air Force Base's Gilkeson Field, named after Brig. Gen. Adlai H. Gilkeson, commanding general of the 19th Bombardment Wing from 1949 to 1951, served as home of the North Field Bombers, the base football team! Teams in Japan, the Philippines, and Guam played in local military leagues, occasionally flying long distances to compete. A league champ on Guam wasn't determined until 1947, when the 1st Marine Brigade and the 501st Port Battalion tied for the island championship. The North Field (later Andersen) Bombers went undefeated in the 1948 season to capture the island title, which began a long legacy of the most successful football team on Guam for the next 34 years. The Bombers won at least 17 league/island championships - including 11 titles in a row from 1955 to 1966. The last Bomber championship was in 1974. Other teams on the island were also rich in tradition and history. In short, while the Navy dominated the league with their number of teams in action, it was the Andersen Bombers that dominated on the scoreboard and in the standings. The Bombers lasted until the leagues' end after the 1981 season. #TeamAndersen #TBT #NorthFieldBombers Joint Region Marianas US Naval Base Guam U.S. Pacific Air Forces 1st Marine Brigade
Every flight starts with planning! And a trip to Aircrew Flight Equipment. AFE Airmen maintain equipment used by pilots, which are essential for survival capabilities. AFE Airmen provide direct support to the Continuous Bomber Presence. Thanks, AFE!
The United States, along with Mexico and the Philippines, were ranked one of the world's worst places for human trafficking in 2018. In the U.S., there is no official number of human trafficking victims, but estimates place it in the hundreds of thousands. Look for these indicators to help combat human trafficking.
WARNING: Security Forces will deny access to the base and/or issue fines for not updating your vehicle registration or not having insurance.
Exercise the very right you protect - your right to vote! We can help with registering to vote, requesting an absentee ballot and notifying your local election officials back home of a change of address. Below is Voter Registration application, Absentee Ballot Request form (SF-76), and mailing address. This form is for Uniformed Service members, family members of voting age, DoD civilians, and citizens residing outside the United States. You may access many voting related questions and answers on the FVAP website at http://www.fvap.gov. Please click the link below to access the direct-to-voter training video which goes through the process step by step. https://www.fvap.gov/militaryhowto If you have any questions please contact your designated squadron UVAO or IVAO at DSN: 366-8137 or email: Andersen.vote@us.af.mil
Congratulations to Staff Sgt. Shannen Lisbourne from the 36th WG/JA team for being recognized as one of Team Andersen's Best! Great job!
#TeamAndersenDYK every day in the United States, about 10 people die from unintentional drowning, according to the Center for Disease Control and Prevention. Drowning ranks fifth among the leading causes of unintentional injury death in the U.S. Many Airmen and families enjoy swimming within the shallow water, but some choose to swim beyond the reef into deeper depths. Since there is no continental shelf around Guam, the landmass underwater does not have a gradual slope; therefore, the water depth drops suddenly. Swimmers are advised not to swim beyond the reef and into the deep open water to avoid hazardous waves and currents or other harmful conditions. Alcohol is also a major cause of water-related incidents. Among adolescents and adults, alcohol use is involved in up to 70 percent of deaths associated with water recreation, according to the CDC. Drinking alcohol causes a lack of coordination, disturbance of the inner ear, impaired reaction time and impaired judgment, which can cause someone to become injured or drown while swimming. Please be safe when out swimming. Never swim alone, drink while swimming, and pay attention to the flag conditions. #safety
Way to go, Security Forces! Sen. Joe San Augustin from the 35th Guam Legislature presented Airmen from the 36th Security Forces Squadron with a legislative resolution and certificates of appreciation, recognizing their volunteer efforts throughout the island community, Jan.16 at Tarague Beach. #TeamAndersen #OneGuam #Community #GoodNeighbors The Office of Senator Joe S. San Agustin Joint Region Marianas U.S. Pacific Air Forces The Guam Legislature
Showing love to Guam and promoting #environmental stewardship with #partners! Airmen from the 506th Expeditionary Air Refueling Squadron and 190th Air Refueling Wing - Kansas Air National Guard partnered with Sailors from Commander, Submarine Squadron Fifteen and members of Love Guam for a roadside cleanup Jan. 11 in Yigo. #OneGuam #GreenGuam #GoodNeighbors #Community #TeamAndersen #TeamAndersenTBT Joint Region Marianas U.S. Pacific Air Forces Yigo Mayor's Office
The "First Lady" of Andersen Air Force Base has retired. Please join Team Andersen in giving our thanks and well wishes to Mrs. Joyce Martratt after her more than 54 years of service to the U.S. Air Force. Mrs. Joyce has been guiding and assisting the leadership of AAFB as an invaluable secretary since the height of the Vietnam war. Serving with 27 general officers during her tenure, she has been essential in the continued success of Andersen, and by extension the security and safety of the indo-pacific region. Thank you for all that you have done for all of us in Team Andersen and may you have a blessed retirement. Si Yu'us ma'åse' Mrs. Joyce U.S. Pacific Air Forces U.S. Indo-Pacific Command #retirement