FINRA recently issued Regulatory Notice 20-35 in which they warn of a clever fraudulent phishing campaign targeting registrants to complete a survey. The emails were sent from the typo-squatted domain (i.e., a fake domain intended to look very similar to a real domain – usually to perform a fraudulent activity) “regulation-finra.org” intending to appear that it came from FINRA. While this e-mail domain address is now known, we expect similar campaigns to be attempted from similarly fraudulent “typo-squatted” domains that could also be expected to mimic other regulatory or oversight organization.
If you or an employee of your firm clicked on this link, we strongly recommend you seek assistance immediately.
While there is no single way to prevent being on the receiving end of malicious phishing campaign, BW Cyber Services provides a comprehensive cyber compliance security program to help your firm identify and prevent future attacks from affecting your operations. For more information on how BW Cyber Services can assist you, please contact us at firstname.lastname@example.org.
For more information on Regulatory Notice 20-35 – click here