---
title: "Here Come the Election-Related Phishing Attacks | Phish Protection"
description: "If it"
image: "https://phishprotection.com/og/blog/here-come-the-election-related-phishing-attacks.png"
canonical: "https://phishprotection.com/blog/here-come-the-election-related-phishing-attacks/"
---

Quick Answer

If it's time for a big election, \_you can be sure the scammers will take advantage of that in the next round of phishing attacks\_. But, election-related \*\*phishing attacks\*\* may not target who you think. Rather than go after voters, who aren't accustomed to having to provide credentials in response to an election-related email, the hackers "\_target political parties and campaigns, think tanks, civic organizations, and associated individuals\_," according to \[CISA\](https://www.cisa.gov/sites/default/files/publications/CISA\_Insights\_Actions\_to\_Counter\_Email-Based\_Attacks\_on\_Election-Related\_S508C.pdf) (Cybersecurity & Infrastructure Security Agency), a U.S. federal agency

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhere-come-the-election-related-phishing-attacks%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Here%20Come%20the%20Election-Related%20Phishing%20Attacks&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhere-come-the-election-related-phishing-attacks%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhere-come-the-election-related-phishing-attacks%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhere-come-the-election-related-phishing-attacks%2F&title=Here%20Come%20the%20Election-Related%20Phishing%20Attacks "Share on Reddit") [ ](mailto:?subject=Here%20Come%20the%20Election-Related%20Phishing%20Attacks&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fhere-come-the-election-related-phishing-attacks%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2020/09/spear-phishing-protection-1279.jpg) 

If it’s time for a big election, _you can be sure the scammers will take advantage of that in the next round of phishing attacks_. But, election-related **phishing attacks** may not target who you think. Rather than go after voters, who aren’t accustomed to having to provide credentials in response to an election-related email, the hackers “_target political parties and campaigns, think tanks, civic organizations, and associated individuals_,” according to [CISA](https://www.cisa.gov/sites/default/files/publications/CISA%5FInsights%5FActions%5Fto%5FCounter%5FEmail-Based%5FAttacks%5Fon%5FElection-Related%5FS508C.pdf) (Cybersecurity & Infrastructure Security Agency), a U.S. federal agency responsible for the nation’s cyber infrastructure and readiness, which issued the warning.

From an article on [Tripwire](https://www.tripwire.com/state-of-security/security-data-protection/cisa-warns-election-related-entities-to-be-on-watch-for-phishing-attacks/) referring to the agency’s notification, “_The security agency noted that malicious actors could use a successful phish to lay the groundwork for secondary attacks_. For instance, those nefarious individuals could use a compromised password to conduct **password spraying attacks** against multiple web accounts of a single user. T\_hey could also use an exposed set of credentials to launch brute-force attacks\_.”

![Spear phishing protection](https://media.mailhop.org/phishprotection/images/2020/09/spear-phishing-protection-1279.jpg) 

The warning couldn’t have come at a better time. According to the Tripwire article, “This bulletin arrived on the same day when Microsoft [revealed](https://blogs.microsoft.com/on-the-issues/2020/09/10/cyberattacks-us-elections-trump-biden/) that malicious actors from Russia, China and Iran were launching **digital attacks** against both campaigns in the 2020 U.S. presidential election.”

Microsoft actually detailed the groups attempting to affect the election by way of **phishing attacks**. According to the company, “_Strontium, operating from Russia, has attacked more than 200 organizations_ including political campaigns, advocacy groups, parties and political consultants. Zirconium, operating from China, has attacked high-profile individuals associated with the election, including people associated with the Joe Biden for President campaign and prominent leaders in the international affairs community. Phosphorus, operating from Iran, has continued to attack the personal accounts of people associated with the Donald J. Trump for President campaign.”

To combat these attacks, CISA recommends political targets incorporate **multi-factor authentication** (MFA) in all email accounts. And while there’s nothing wrong with using MFA, we’ve also [seen](/blog/attack-on-2-factor-authentication-highlights-phishing-protection-needs/) that it can be defeated by motivated attackers. So, by itself, _MFA will not provide adequate protection_. So, what else is needed?

![Prevent spear phishing](https://media.mailhop.org/phishprotection/images/2020/09/prevent-spear-phishing-4163.jpg) 

The perfect complement to MFA is **cloud-based email security** with _real-time link scanning technology_ like that available from [Phish Protection](/). Unlike MFA, which tries to keep the bad guys out, Phish Protection assumes everyone is a bad guy and acts accordingly. _It checks every link in every email, all the time, looking for malicious anything_. And when it finds it, it quarantines the email so it can’t do any harm.

Here’s hoping those involved in the upcoming election wise up and take advantage of technologies like Phish Protection. There’s no reason they can’t. Because it’s cloud-based, _Phish Protection works with all major email services and sets up in just 10 minutes_. Ten minutes to ensure an uncompromised election. Doesn’t seem like it’s too much to ask.

If you’re involved in the upcoming election, _help protect its integrity with Phish Protection_. You owe it to your country. Try it **free for 60 days**, which will take you up to the election.

## Topics

[ Phishing ](/tags/phishing/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Foundational 5m  0ktapus, Okta Breach Helps Attackers Launch Sophisticated Supply Chain Attacks  Sep 5, 2022 ](/blog/0ktapus-okta-breach-helps-attackers-launch-sophisticated-supply-chain-attacks/)[  Foundational 4m  13 Spear Phishing Attacks Examples To Justify Investment For Phishing Prevention Solutions In Your Organization  Aug 1, 2019 ](/blog/13-spear-phishing-attacks-examples-to-justify-investment-for-phishing-prevention-solutions-in-your-organization/)[  Foundational 4m  All 14 centers of Kettering Health were affected by a massive ransomware attack, Major outage in the Ohio medical center  May 23, 2025 ](/blog/14-centers-of-kettering-health-were-affected-by-massive-ransomware-attack-in-ohio-medical-center/)[  Foundational 4m  2021 Phishing Trends You Need To Be Wary Of  Aug 2, 2021 ](/blog/2021-phishing-trends-to-be-wary-of/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Here Come the Election-Related Phishing Attacks","description":"If it's time for a big election, you can be sure the scammers will take advantage of that in the next round of phishing attacks.","url":"https://phishprotection.com/blog/here-come-the-election-related-phishing-attacks/","datePublished":"2020-09-17T10:10:54.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2020-09-17T10:10:54.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/here-come-the-election-related-phishing-attacks/"},"articleSection":"foundational","keywords":"Phishing","wordCount":512,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2020/09/spear-phishing-protection-1279.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://phishprotection.com/foundational/"},{"@type":"ListItem","position":4,"name":"Here Come the Election-Related Phishing Attacks","item":"https://phishprotection.com/blog/here-come-the-election-related-phishing-attacks/"}]}
```