Finra has issued a cybersecurity alert to its member firms warning of an ongoing phishing campaign that impersonates two key members of the organization's leadership.
The fraudulent scheme, which the Financial Industry Regulatory Authority Inc. says impacts all firms, involves emails falsely claiming to be from executives at the industry regulator, using the deceptive email addresses “[email protected]” and “[email protected].”
According to the alert, these email addresses, along with the domain “data-finra.org,” are not associated with Finra, and recipients are advised to immediately delete any emails received from these domains.
Utilizing a classic social engineering ploy appealing to actual authorities, the bogus emails purport to come from members of Finra’s leadership, including Steve Randich, executive vice president and chief information officer of Finra, and Robert L.D. Colby, its chief legal officer.
The phishing messages are also crafted to evoke a sense of urgency, claiming multiple attempts have been made to contact the target “to deliver a notice that requires your attention.” That’s on top of vague tags simply highlighting the notice as “confidential” with a “Due Date” of April 15, 2024.
The fraudulent communication includes a file labeled “Finra [FIRM NAME]_Disclosure290124.pdf,” with a request to “complete the request at your earliest convenience.”
In response to this phishing campaign, Finra has reminded firms to maintain good cybersecurity practices and verify the legitimacy of any suspicious email before engaging with its content, including responding, opening any attachments, or clicking on embedded links.
Finra has also reached out to the registrars behind the fake “data-finra.org” Internet domain, asking for its suspension. To help address cybersecurity threats, Finra is urging member firms to contact its cyber and analytics unit for guidance, and promptly report incidents to the FBI’s Internet Crime Complaint Center or the Cybersecurity and Infrastructure Security Agency via its 24/7 Operations Center.
AE Wealth’s new president reflects on her 25 years in wealth management and how the industry’s cycle from independence to RIA to W-2 is redefining advisor affiliation models.
The Oasis Group white paper argues $100 million-$1 billion AUM firms spend too much time on investment operations, and the economics of TAMP outsourcing are better than they look.
"Advisors don't want to sacrifice flexibility and ownership in order to access that institutional quality resources and support," Concurrent's Joe Mooney says as his Merchant-backed RIA crosses $20 billion AUM.
A decade after launch, co-founder Alan Moore reflects on the model's rise, how firms have relaxed their Boomer millionaire bias, and what last year's AdvisorBOB acquisition means for the platform.
Survey finds policy hurdles and education gaps are shaping how advisors approach crypto allocations.
Wellington explores how multi strategy hedge funds may enhance diversification
As technical expertise becomes increasingly commoditized, advisors who can integrate strategy, relationships, and specialized expertise into a cohesive client experience will define the next era of wealth management
