PRESS RELEASE: Gen2 Broking to join KYND’s Broker Programme to help businesses take control of cyber risk
juin 05, 2020 • Blogs • 4 min read
Ironic? Maybe. Embarassing? Definitely! <br> FCA warns of domain used to phish other FCA-regulated firms… registered by an FCA-regulated firm
On the 28th May, Insurance Age reported that compliance business RWA wrote to its broker clients stating: “It has been brought to our attention that several of our clients have received emails purportedly from the FCA asking them to complete a compliance questionnaire by 28 May 2020. The FCA has confirmed that this email is a scam. Please do not click on the link provided and do not give out any personal or firm details.” See the link to the FCA warning here. Attempted email scams are fairly common, but what made this case interesting is who allegedly registered the domain: an FCA-regulated firm.
Finding the source of the issueA lookup on the domain used in the phishing email “From” addresses reveals that it was supposedly registered on 26th May 2020 by an FCA regulated wealth management business. There are 3 possibilities for what happened:
- The company registered the domain
- The company’s domain registration account was compromised by the scammer
- The scammer was able to create a domain registration account in the name of the company.
So how can I stop my company being used to enable scams?We won’t get into the potential regulatory, security & reputational impacts here – suffice to say that we wouldn’t want to have inadvertently enabled this attack, nor to have scammers with access to an account in our name! But we would like to share some tips to prevent this from happening to you. The first thing you can do is to ensure that ALL of your registered domains are secured from being used to send unauthorised emails, using SPF & DMARC. If you don’t want a domain to send email, you can specify that no-one is authorised to send on its behalf with an SPF record of "v=spf1 -all", and you can inform recipients to reject any email sent from unauthorised senders with a DMARC record of "v=DMARC1; p=reject; rua=mailto:[firstname.lastname@example.org]”. To find out more about managing your email security, check out our previous blogs. Secondly, you can ensure that your accounts are secure. That means using multi-factor authentication (MFA; sometimes called 2 step verification) and using unique passwords for each different account you log into. Monitoring if any of your accounts are involved in a data breach by using Have I Been Pwned will also allow you to review the security of any existing accounts. Finally, monitoring for newly-registered domains associated to your business will alert you to any which have been created without your approval. At KYND, we’re always happy to help with these and loads of other cyber risks. We make them simple to understand, quick to monitor and easy to prevent. With a simple product that speaks your language, just enter your website name, and we do the rest. To speak to a KYND person, and see a demo of what KYND can do for your business, get in touch.
juillet 07, 2021 • 4 min read
juin 08, 2021 • 4 min read
PRESS RELEASE: KYND named as a Global CyberTech100 company for second year running
mai 27, 2021 • 1 min read