Social Engineering Test

The link you clicked on was part of a test to determine if credit union employees are vulnerable to fall victim to a social engineering attack.   Please use the information below to better protect yourself, the credit union’s computer system, and our member data from falling victim to a social engineering attack.

Social engineering attacks attempt to fool unsuspecting users or employees into taking action (such as sharing sensitive information, granting system access, downloading malware, or divulging a password) which can then be used by a cyber criminal for malicious activity.  The fraudsters often use social skills to trick victims into taking action by creating a false sense of urgency, importance or relevance for the victim.

The email you received could have been identified as a scam based on the orange ‘External Sender’ alert at the top of the email.  If an email from a coworker has the orange External Sender alert at the top, it didn’t actually come from that employee – it was ‘spoofed’ by a bad actor outside of the credit union to make it look like it was coming from that person.  Please report those types of emails to Beth right away so our entire team can be alerted, and then DELETE the message!  Clicking on links or attachments could allow our system to be compromised.

Keep in mind social engineering can also be attempted by phone or even text message, so it is important to always verify who you are speaking with before releasing information or taking action.

P.S. There is no need to panic if you clicked on the link this time… The point of this test is to make sure we all pass the next tests that come our way (whether real or false)!

~ Beth