On June 2, 2021, the FBI released a warning related to a significant rise in criminal activity where threat actors are masquerading as advisors and brokers online.
According to the FBI, the scheme is perpetrated by threat actors taking publicly available information in open sources (ADV Lookup, LinkedIn, etc.) that list names, registration numbers, and associated permissions for registered advisors and brokers. Once this information has been collected, these criminals attempt to collect investor credentials by building well-crafted websites impersonating the targeted brokers and advisors. Once they have duped their victims and collected their credentials the threat actors use the information in highly targeted campaigns to scam individual clients out of their funds.
While the FBI is actively working to initiate take downs of fraudulent sites that have been identified, BW Cyber Services recommends all advisors and brokers with online sites providing custom access to immediately notify their clients of this potential fraud.
How BW Cyber Services Can Help
While there is no single way to prevent being targeted, BW Cyber Services can help you develop a comprehensive cyber compliance security program to prevent and respond to future attacks which affect your operations. We can assess the risks in your organization, review your response plans, conduct phishing campaigns and penetration testing, and we offer a variety of other services to meet your cybersecurity needs. One service BW offers that would help combat the fraud described above is providing alerts and takedown requests for typosquatted domains. For more information on how BW Cyber Services can assist you, please contact us at firstname.lastname@example.org.