Remain Vigilant to Ongoing Cybersecurity Threats
As a reminder, Partners 1st will never ask for your credentials via email or phone. If you are prompted by someone to provide them with your credentials, do not respond.
What is spear phishing?
This is a more targeted phishing attack towards a specific individual, organization or business. Malicious actors may target members by sending emails that appear to come from a credit union and they will often include links that would direct you to websites that are built to look very similar to legitimate sites.
It’s important to remind both employees and members that this type of phishing is occurring. Similar to how members could fall for something that appears to be from their institution, employees could fall victim to this as well.
Here are a few tips:
- Verify the sender’s email address: Look at the email address that each email comes from. Does part of the address look suspicious? Does the domain match with whom the sender claims to be associated with?
- Check links in emails: Use your mouse to hover over links in emails. Does it look correct? Or does something seem off?
- Think before you click: Take your time when analyzing the email.
- When in doubt call: If you ever have any concerns or questions about the legitimacy of an email you received, contact the organization right away. Even if the suspicious activity is in the form of a phone call and they ask you for your credentials, we recommend that you tell them that you will call them back. Additionally, be sure to call the number you have on file, not the number they provide to you.
Remember: Partners 1st will never prompt you to provide passwords, answers to security questions or token information by email or phone.