Multiple federal agencies have reported a sharp increase in sophisticated phishing attacks targeting government employees over the past quarter. The campaigns use AI-generated emails that closely mimic internal communications and are difficult to distinguish from legitimate messages.
CISA has issued an advisory urging all federal workers to enable hardware-based multi-factor authentication and report suspicious emails immediately. The agency noted that at least three departments experienced credential compromises during the period.
Cybersecurity experts warn that the use of generative AI in phishing campaigns represents a significant escalation in threat sophistication, requiring updated training and detection tools across both public and private sectors.
