New phishing attack targets FIs, uses receipts to collect data

Financial institutions around the world are being targeted by a new email phishing campaign which uses HTML file attachments typically used by web servers according to a new report by researchers at Mimecast.

According to reports, receivers of the email are prompted to open the attachment and provide credentials to view a receipt from an unexpected payment – usually of high dollar amounts.

NAFCU has long been active with lawmakers on the issue of data security and was the first group after the massive 2013 Target data breach to call for a legislative solution to reform the nation’s data security system. The association has cybersecurity compliance resources available online.

 

continue reading »