PJM has reports of members receiving a new phishing email that falsely appears to come from Andrew L. Ott, PJM president and CEO. The email contains an attachment that, if opened, attempts to steal user credentials.
The email has the following characteristics:
From: Andrew L. Ott
Subject: Emailing (550dc) Updated Procurement
PJM recommends that members alert their internal IT security teams about the email. PJM has notified the Electricity Information Sharing and Analysis Center (E-ISAC).
Anyone who has received this email or other suspicious email that appears to be from PJM, please contact PJM Member Services at email@example.com or 610-666-8980.
This recent phishing attempt follows one last week sent to members that appeared to come from the PJM Board of Managers. Clicking on a link in the email unleashed ransomware. PJM pointed out that the board never sends emails directly to members.
Cybersecurity is one of the most critical concerns in the energy industry. Cybersecurity is one of PJM’s top priorities and the company continues to diligently monitor and aggressively work to prevent cyberattacks. In addition to a team of specialists, PJM is consistently training, and partnering with industry experts on best practices.