Security News > 2020 > December > Phishing targets US brokerage firms using FINRA lookalike domain
US securities industry regulator FINRA warned brokerage firms earlier this week of ongoing phishing attacks using a recently registered web domain spoofing a legitimate FINRA website.
WHOIS domain data does not provide any information on who registered the phishing domain since all personal information is redacted using the registrar's privacy service.
FINRA has asked Gandi to suspend services for the domain due to its use in active phishing attacks before issuing the alert but, although not hosting any website, invest-finra[.
Since the domain is not connected in any way with FINRA, member brokerage firms are advised to immediately delete any and all emails received from this domain.
In August, FINRA notified brokerage firms of threat actors using their registered brokers' info to build convincing phishing sites.