Hello Team,

We want to alert everyone to a recent increase in scam and social engineering attempts targeting individuals through email, SMS/text messages, and social media. These attackers are becoming increasingly sophisticated and may impersonate trusted individuals or organizations to trick you into sharing sensitive information, clicking malicious links, or even revealing your two-factor authentication (2FA) codes—allowing them to bypass security measures and access your accounts despite Multi-Factor Authentication (MFA) being enabled.

Please remain vigilant and look for these common red flags:

🔹 Urgency or Pressure – Messages that demand immediate action, such as “your account will be locked” or “urgent payment needed.”

🔹 Unusual Requests – Asking for gift cards, wire transfers, passwords, or sensitive data.

🔹 Generic or Unexpected Messages – Poor grammar, odd phrasing, or messages that don’t sound like the person supposedly sending them.

🔹 Suspicious Links or Attachments – Hover over links before clicking and double check the spelling. If it looks strange or unfamiliar, don’t click it. Hyperlinks to websites that look like the actual domain but might have a letter replaced with something which looks like it is very common.

🔹 Unknown Senders or Spoofed Contacts – A familiar name with an unfamiliar email or phone number is a red flag. On mobile devices, it might only show the name of the sender, and you will need to expand the “from” field to see the actual senders email.

✅ Never share passwords or personal information via email or text.

✅ Verify requests for sensitive actions by calling the person directly or using known contact information.

✅ Report suspicious messages to your manager immediately.

✅ Use multi-factor authentication (MFA) where available, but don’t forget to use with caution. If you ever receive a push notification which you are not expecting, it is suggested that you change your password immediately.

✅ Keep your software and devices updated to ensure the latest protections.

If you receive any message that seems suspicious—even if it appears to come from leadership or a colleague—take a moment to verify before responding.

Let’s stay proactive and help protect each other and the organization from these growing threats. If you have any questions or need help identifying a suspicious message, please don’t hesitate to contact us at 272-201-6201 or service@nepabiztech.com.