APIC and its chapters are routinely targeted by online phishing scams. In these attacks, scammers spoof emails from one leader to another about urgent money transfers. Phishing messages typically include at least one link to a fake website, designed to mimic the site of a legitimate business. The message entices the recipient to provide information that could be used for identity or online financial theft. If you receive any suspicious emails, do not respond and do not transfer funds.
Helpful hints to protect your chapter against these attacks:
- Devise a process for handling sensitive information (member lists, payment requests, etc.). Limited information should be sent electronically and only with the consent of multiple chapter leaders.
- Send electronic files containing sensitive information as password protected.
- If you are at all suspicious, follow up with any supposed sender either by phone or by sending a new email.
- Look for spoofed email addresses. They may be similar to legitimate addresses but have a misspelling or come from a spoofed domain. Even if the name of the sender seems legitimate, look at the actual email address to confirm.
- Do not click any links or download any attachments.
- Report the suspicious email address to your email provider as spam.Note that the scammer may try again and remain vigilant.