The Postal Service wants employees and contractors to be aware of the threat social engineering poses to the organization.
Social engineering occurs when cybercriminals use technical, interpersonal and psychological methods to try to get financial and personal information from their victims.
This could involve a cybercriminal calling or emailing an employee or contractor while impersonating a real business to gain their trust.
It could also involve a cybercriminal targeting an employee or contractor to get usernames and passwords in an effort to plant ransomware on the organization’s network.
A successful social engineering attack would jeopardize the Postal Service, its partners and customers.
Employees and contractors should always:
• Limit the information they share online about their job, family and other personal details.
• Verify any request for information to make sure the person or company is legitimate. Never send information if you have any doubts.
• Report if you suspect you are being targeted on your USPS-issued device. Call the Cybersecurity Operations Center at 866-877-7247 or send an email to cybersafe@usps.gov.
The CyberSafe at USPS Blue and LiteBlue pages have more information.