FINRA (Financial Industry Regulatory Authority)warns member firms of an ongoing phishing campaign that involves fraudulent emails stating to be from “FINRA Membership” and using the email address “supports@finra-online.com”. But, “finra-online.com” has no affiliation with FINRA.
The recommendations from FINRA recommends that anyone who clicked on any link or image in the email immediately notify the appropriate individuals in their firm of the incident.
“FINRA warns member firms of an ongoing phishing campaign that involves fraudulent emails purporting to be from ‘FINRA Membership’ and using the email address ‘supports@finra-online[.]com,’ FINRA says. “The email asks the recipient to respond to an issue of ‘regulatory non-compliance for which your immediate response is required’ and then asks the recipient to click on a link or document. FINRA recommends that anyone who clicked on any link or image in the email immediately notify the appropriate individuals in their firm of the incident.”
Many employees might have a tenancy to open the email, and FINRA recommends that users be vigilant when dealing with emails that seem urgent. Remember finra-online.com Is not from FINRA - its a phishing scam. But, how can you stop them from opening and clicking on image or link? Security Awareness Training
Security Awareness Training can help train your employees to be wary of unsolicited emails so they can avoid falling for phishing attacks. Which means better security for your business.
Where so you start? CorpInfoTech Phishing for Awareness Series can be an easy simple pass along email to your employees. But, for the long run CorpInfoTech suggests Security Awareness Training - CorpInfoTech is here and ready to help!
Corporate Information Technologies provides small to mid-market organizations with expert I.T. services including compliance assessment, cybersecurity penetration tests, and comprehensive business continuity planning services. Corporate Information Technologies can help organizations, quantify, create, refine, and mitigate the risks presented by business threatening disasters in whatever form they may be disguised.
