We want to bring to your attention a recent uptick in cyber threats targeting financial professionals and their networks, including phishing emails, spoofing and compromised accounts. These incidents are becoming more sophisticated, so it is critical to stay vigilant to protect your personal and financial information.
SIA will never ask for your sensitive information via email. All requests will be made through a secure and encrypted medium. If you receive any such request, regardless of how legitimate it may appear, treat it as a red flag. If something doesn’t seem right, contact us immediately at (502) 895-0122.
What These Attacks Look Like
Recent incidents SIA has witnessed:
- Compromised messages from client or vendor email accounts
- Spoofed addresses that closely resemble legitimate domains including StegnerInvestments.com
- Requests to click links or open attachments
Even if the sender appears to be someone you know or trust, a compromised account can be used to deceive you. In fact, two of the recent cases originated from legitimate email addresses that had been hacked.
What You Should Do
If you receive an unexpected email that asks you to open an attachment or click a link, or references confidential financial matters you weren’t expecting... Do not click. Do not reply. Report it as phishing to your email provider or IT team. Never respond to the suspicious email.
Remember, if anything seems unusual, slow down and confirm details by phone before taking any action.