Once again cybercriminals are impersonating the Financial Industry Regulatory Authority (FINRA), which is the largest brokerage regulation company in the US. Organizations strive to be compliant with regulations, which is why receiving an email that appears to be from FINRA can be quite startling.
In this FINRA-themed phishing email, the sender’s email address uses the domain gateway[dash]finra[dot]org. The email claims that your organization has received a compliance request and it directs you to click on a link for more information. To add a sense of urgency, the message also states “Late submission may attract penalties”. The email even includes a case number, request ID, and a footer with legal jargon to make it feel legitimate. But if you click the link, you will be redirected to a malicious website. Don’t fall for it!
Use the tips below to stay safe from similar attacks:
What is sensitive information?
Microsoft-owned social network LinkedIn is reportedly the latest victim of a massive data breach where data of 500 million user profiles has been allegedly leaked by cybercriminals. The leaked data includes email addresses, phone numbers, workplace information, full names, account IDs, etc. The potential for social engineering attacks is huge.
According to CyberNews, the potential of the leak is huge. An individual selling the data on a hacker forum claims it was scraped from 500 million profiles. The leaked data includes users’ email addresses, phone numbers, workplace information, full names, account IDs, links to social media accounts, and gender details.
Confirming the news to Business Insider, a LinkedIn spokesperson said that the leaked data has been scraped from LinkedIn. “We’re still investigating this issue, the posted dataset appears to include publicly viewable information that was scraped from LinkedIn combined with data aggregated from other websites or companies.” “Scraping our members' data from LinkedIn violates our terms of service and we are constantly working to protect our members and their data,” the spokesperson added.
The company also informed that the data of private members is safe. This means the scraped data only includes information from LinkedIn public members.
Earlier this week, personal data of 533 millions of Facebook users were allegedly leaked including 6 million people in India. The leaked Facebook data has been posted for free on hacking forums and includes date of joining, place of work, names, gender, occupation and relationship status of users. Full story at: https://www.thequint.com/tech-and-auto/data-of-500-million-linkedin-users-for-sale-on-a-site-report