Alert: Phishing Impersonation of National Commodore – USCG AUXILIARY EAST DISTRICT NORTHERN REGION

Auxiliary Leadership Link

To: All Auxiliarists

Dated: 24 February 2026

Dear Members,

The Cybersecurity Directorate (Y) has received multiple reports of fraudulent spear-phishing emails impersonating National Commodore COMO Mary Kirkwood.

These emails claim to contain a “secure message” attachment. If opened, the attachment directs recipients to a website requesting their email address and password. This is a credential harvesting scam designed to steal your login information.

What You Should Do

If you entered your credentials:

Change your password immediately.
If you reuse that password on any other system (which is strongly discouraged), change those passwords as well.
Notify the Y Directorate Incident Response Team at cyber-incidents@cgauxnet.us.

If you received the email but did not interact with it:

Delete the email.
Do not open or forward the attachment.
No additional reporting is required.

Stay Safe Online

Be cautious of unexpected emails, even if they appear to come from trusted contacts. These types of secure emails will not be sent by NACO.
Never click links or open attachments unless you have verified their legitimacy.
If you receive a suspicious email on your CGAUXNET.US account, or if you receive a phishing email on your personal account that is Auxiliary-related, please take the following steps:
- Forward the email to phishing@cgauxnet.us (do not click on any links or open attachments).
- Delete the email after forwarding.
If you are using a personal email account and an email appears suspicious, delete it immediately.

For additional guidance on phishing scams, cybersecurity best practices, and incident reporting, please visit the Cybersecurity (Y) Directorate page:
https://wow.uscgaux.info/content.php?unit=Y-DEPT&category=publications

Thank you for your attention and continued vigilance.

Very respectfully,
Cliff Neve
DIR-Y