Retailers aren't the only ones who will profit this holiday season. Share these critical steps with your employees. Work and personal inboxes are flooded this time of year with enticing holiday shopping deals potentially using social engineering tactics that put your company at risk. The Holiday season is the biggest shopping season – and also the largest and most profitable phishing season for cybercriminals.

From online shopping and package delivery notifications to flight updates, discover how to protect yourself and your company from cybercrime this holiday season.

SCAM OF THE WEEK:

Once again cybercriminals are impersonating the Financial Industry Regulatory Authority (FINRA), which is the largest brokerage regulation company in the US. Organizations strive to be compliant with regulations, which is why receiving an email that appears to be from FINRA can be quite startling.

In this FINRA-themed phishing email, the sender’s email address uses the domain gateway[dash]finra[dot]org. The email claims that your organization has received a compliance request and it directs you to click on a link for more information. To add a sense of urgency, the message also states “Late submission may attract penalties”. The email even includes a case number, request ID, and a footer with legal jargon to make it feel legitimate. But if you click the link, you will be redirected to a malicious website. Don’t fall for it!

Use the tips below to stay safe from similar attacks:

What is sensitive information?