← Return to Blog

16 Mar, 2022

Information Security Brief - March 2022

Gone Phishing

Don’t let data-harvesting cybercriminals drop a line in your network.

As spring approaches and the weather improves, many of us might take advantage by taking time off and trying to catch some rest and relaxation. Meanwhile, cybercriminals are doing what they do year-round: Trying to catch us off guard and steal vital information. These attacks, particularly phishing scams, are increasing in frequency and sophistication, making it hard for us in the banking industry to get much-needed R&R.

Phishing scams are a method cyber attackers use fraudulent emails to target a specific individual or group of individuals and rely on social engineering tactics to make you feel at ease. A favorite tactic of cyber attackers is to use emails that either appear to be or maybe from a title insurance company. Even though a bank might not be working with that company on anything at the time, bank employees may still get periodic emails from title companies about the services they offer. As a result, such emails feel familiar and safe to open, which the cyber attacker is expecting. When an unsuspecting bank employee clicks on the link or opens an attachment, the malware infects the employee’s workstation. Other times, the cyber attacker prompts the employee to input a username and password to capture the employee’s login credentials.

Firewalls, anti-virus, and SPAM filters alone are not enough to prevent these attacks; BankOnIT works to provide more capabilities to meet the needs of financial institutions. However, it takes each individual’s effort as well.

Stay aware, think before you click on a link or an attachment, and when in doubt, stop. Seek assistance to determine if the email you have received is legitimate. Protect your bank by being aware of these types of attacks, remaining alert, and avoiding links or attachments within suspect emails.

← Return to Blog


This publication attempts to provide timely and accurate information concerning the subjects discussed. It is furnished with the understanding that it does not provide legal or other professional services. If legal or other expert assistance is required, the services of a qualified professional should be obtained.

Related Posts

Information Security Brief - September 2022

Rise of the Robotexts When it comes to texting scams, the key is knowing how to respond - and when not to Scammers are a...

Read more

Information Security Brief - August 2022

Seven tips while working remotely Working outside the office doesn’t have to mean sacrificing cybersecurity Remote work ...

Read more

Information Security Brief - July 2022

Keeping your private information private Limit what's available in Google searches 92% of all Internet searches are host...

Read more