Security News > 2020 > October > US brokerage firms warned of widespread survey phishing attacks
The U.S. Financial Industry Regulatory Authority has issued a notice warning member brokerage firms of widespread phishing attacks using surveys to harvest information.
FINRA is a non-profit organization and self-regulatory body authorized by the U.S. government to regulate exchange markets and brokerage firms.
The financial industry regulator said that the phishing messages are being sent from a fake FINRA domain and made to look like they were being sent by FINRA. Member firms are asked to fill a survey by October 13, with the information needed to FINRA would need to "Update its conduct and supervisory rules."
"FINRA reminds firms to verify the legitimacy of any suspicious email prior to responding to it, opening any attachments or clicking on any embedded links," the notice adds.
During August, FINRA warned members of attackers using registered brokers' info to create convincing phishing sites.
News URL
Related news
- How Phishing Attacks Adapt Quickly to Capitalize on Current Events (source)
- Google raps Iran's APT42 for raining down spear-phishing attacks (source)
- Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks (source)
- Cybercriminals exploit file sharing services to advance phishing attacks (source)
- CERT-UA Warns of New Vermin-Linked Phishing Attacks with PoW Bait (source)
- How AitM Phishing Attacks Bypass MFA and EDR—and How to Fight Back (source)
- Novel attack on Windows spotted in phishing campaign run from and targeting China (source)
- Iran Cyber Attack: Fox Kitten Facilitates Ransomware in US (source)
- Cybercriminals Exploit HTTP Headers for Credential Theft via Large-Scale Phishing Attacks (source)
- Australian Organisations Targeted by Phishing Attacks Disguised as Atlassian (source)