Cybersecurity Threat Alert – Email Phishing Scam Targeting DFS-Regulated Entities

The New York Department of Financial Services (“DFS”) has issued the below notice to regulated entities and individuals to use caution before responding to outreach from individuals falsely claiming to represent DFS.

DFS recently became aware of phishing emails purporting to come from DFS personnel urging regulated entities to: 1) open files, 2) make payments, and/or 3) to share a file that is missing, to prompt further engagement. DFS urges all regulated entities to closely review email header information, including the email address used to transmit the email.

See: https://www.dfs.ny.gov/industry_guidance/industry_letters/20260122_cybersecurity_threat_alert   

Questions may be directed to author, Cynthia Borrelli.