Far from complex, the sender manipulated a POST request to send an email from FB infrastructure, and automated it.
The FBI has placed the blame for a weekend fake email incident on a misconfiguration in its Law Enforcement Enterprise Portal (LEEP) that allowed emails to be sent from the ic.fbi.gov domain. „LEEP is FBI IT infrastructure used to communicate with our state and local law enforcement partners,“ it said. „While the illegitimate email originated from an FBI operated server, that server was dedicated to pushing notifications for LEEP and was not part of the FBI’s corporate email service.
