The Financial Industry Regulatory Authority has issued Regulatory Notice 21-30 warning firms of an ongoing phishing campaign that involves fraudulent emails purporting to be from FINRA and using one of at least three imposter domain names.
The phony domains include @finrar-reporting.org, @Finpro-finrar.org, and @gateway2-finra.org.
The email, a sample of which can be viewed here, asks recipients to click on a link and provide information, noting that a “late submission may attract penalties.”
FINRA recommends that anyone who clicked on any link or image in the email immediately notify the appropriate individuals in their firm of the incident.
None of these domain names are connected to FINRA and firms should delete all emails originating from any of these domain names, the regulator said. FINRA reminds firm to verify the legitimacy of any suspicious email prior to responding, opening any attachments or clicking on any embedded links.
FINRA has requested that the relevant Internet domain registrars suspend services for all three domain names.