Last week, one of SAC’s family members was sent an urgent email from his Regions bank. At least, that’s what it looked like. The email had the bank’s logo at the top of it, a professional looking signature at the bottom and the sender email address seemed to be legitimate.
The email itself though was bizarre.
It alerted its recipient that Regions bank was updating their clients’ accounts. Any accounts that were not updated would be shut down. But never fear! All the client would have to do is fill out this simple form and email it back to the bank and nothing bad would ever happen to them.
The form asked for basic pieces of PII (Personally Identifiable Information): First name, Last name, Address and Email. But then it went on to ask for a Social Security number and a bank account number. This was a major red flag. Banks should never ask for this kind of information via email. They care about your privacy and would not ask you to put yourself at risk in such a careless way.
So what did our wise family member do?
HE CALLED THE BANK.
It took the bank teller all of thirty seconds to conclude that the email was, in fact, not from Regions. It was a scam. The teller asked that the email be forwarded to her so she could report it properly.
And that, ladies and gentlemen, is how you think before you click!
Latest posts by The Security Awareness Company (see all)
- Venmo security: Peer-to-peer payment apps are riskier than you think - November 26, 2019
- Security Awareness: Get Management to Buy In - October 15, 2019
- The Ultimate Guide to a Successful Security Awareness Program (SAP) - October 10, 2019