Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    Happy Credit Union Customers Become the Target of Spoofing Scams Due to a Lack of Email Security

    Happy Credit Union Customers Become the Target of Spoofing Scams Due to a Lack of Email SecurityTaking advantage of heightened levels of customer trust and satisfaction, along with lowered levels of properly implemented security, credit unions are seeing a rise in email-based scams.

    An uptick in phishing campaigns targeting credit union customers intent on harvesting credentials and taking victims for their money has been identified by security researchers at Avanan. The attack spoofs the credit union, attempting to get the victim to access the [fake] credit union website, provide their credentials, and take care of some banking activity the phishing email claims needs to be addressed.

    According to Avanan, there are a few factors that aid in the success of this kind of attack:

    • 66% of credit unions lack controls like DMARC to avoid spoofing
    • 92% of them don’t have proper email security in place
    • A majority of credit union customers are happy with, and trust, their credit union

    Add all this up and you have scammers lining up to impersonate credit unions, and customers who naturally assume emails claiming that something’s wrong with their account are going to take the prescribed (albeit, malicious) actions.

    This alignment of insecurity and ignorance creates the perfect storm for these kinds of scams to thrive. And while you can’t control whether your credit union does or does not have proper security controls in place, you can educate your own users so they don’t become victims while on a company endpoint by enrolling them in Security Awareness Training so they don’t err on the side of simply believing an email is from their credit union… just because it says so.

     

    Return To KnowBe4 Security Blog

    The world's largest library of security awareness training content is now just a click away!

    In your fight against phishing and social engineering you can now deploy the best-in-class simulated phishing platform combined with the world's largest library of security awareness training content; including 1000+ interactive modules, videos, games, posters and newsletters.

    You can now get access to our new ModStore Preview Portal to see our full library of security awareness content; you can browse, search by title, category, language or content topics.

    ModStore01-1The ModStore Preview includes:

    • Interactive training modules
    • Videos
    • Trivia Games
    • Posters and Artwork
    • Newsletters and more!

    Start Your Preview

    PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

    https://www.knowbe4.com/training-preview

    Topics: Phishing

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe to Our Blog


    Security Awareness Training
    Blog RSS Feed
    Comprehensive Anti-Phishing Guide
    All Posts

    Posts by Tag

    See all

    Posts By Topic

    View All

    Get the latest about social engineering

    Subscribe to CyberheistNews