December 18, 2024
We have received notice that at least one firm has received phishing emails purporting to be FINRA from the domain [domain?]. The phishing campaigns are similar to past phishing campaigns FINRA has experienced, such as the campaign referenced in the Cybersecurity Alert that FINRA issued earlier this year.
In at least one email that is part of this campaign, the email includes the firm name (“FINRA LOA document for [Adviser Name]”) and asks the recipient to click on something to sign electronically.
As a reminder, for legitimate requests FINRA asks recipients to take action by logging on to the IARD portal—not to act directly through email.
What does this mean for me and my firm?
If you or someone in your organization is the recipient of these types of phishing emails, do not click on any links or attachments. Delete all emails originating from the domain name referenced above or report the email as phishing. It is crucial to always verify the legitimacy of any suspicious email prior to responding, opening any attachments, or clicking on any embedded links. Firms should also monitor FINRA’s “Rules & Guidance” page.
Cybercrimes tend to increase during the holiday season, as malicious actors take advantage of the increased employee travel and distractions that are more common during the holiday season. Firms should remain vigilant, and continue to train employees on the ways to identify red flags and be sure they are aware of the latest threats.
