How to identify an impersonation email or message
- Urgent, short notice requests that involve the transfer money or sensitive information such as bank account information or login credentials.
- Purchase requests to be completed on behalf of the CEO, often gift cards.
- Abruptly requesting changes to direct deposit information.
- Using language that induces urgency and a sense of fear.
Example of Impersonation Attack
From: Bridget Weston <email@example.com>
Date: October 6, 2022
To: SCORE Volunteer <firstname.lastname@example.org>
Subject: IMPORTANT MESSAGE
I'm on a conference call meeting right now. And I need you to complete an urgent for me.
I need to provide a client with a gift card. Can you kindly confirm if you can get that done right now.
Chief Executive Officer
How to report these attacks?
When employees and volunteers suspect they have been targeted or have been involved in an impersonation attack, they should immediately report the incident by forwarding the email to IThelpdesk@score.org and if its in the form of cell phone message please attach a screenshot.
Please be advised that a SCORE executive will never message or email you directly for any favors, gift cards or credit card information.