Member Beware – Fake SmartHub Websites

This is a courtesy notification to raise awareness about phishing campaigns directed toward end consumers in the utility  industries. This includes phishing campaigns imitating SmartHub login pages.

In one example, consumers at an NISC member cooperative received an email that contained a link to a page impersonating SmartHub login. We received permission to share a screenshot of the spoofed page for other Member awareness:

Note that this page included logos, including the company logo (redacted) as well as the SmartHub logo, to give the appearance of legitimacy. (The URL was not an NISC-hosted or MJM-hosted resource).

Upon providing credentials, the victim was prompted to enter a variety of sensitive information, including a credit card number as well as a social security number: