Bank of America Coronavirus Resource Center See details

Be Cyber-Secure: Beware These Business Email Scams

Steps you can take to defend against phishing, smishing and other forms of cyber attack

CYBER CRIMINALS SEND OUT a staggering number of bogus messages to businesses every year via email or messaging platforms. They’re “phishing” for ways to access proprietary and confidential data, or they’re trying to trick employees into taking an action that will benefit them—and harm your business.

These phishing attempts are usually called smishing when cyber criminals use SMS or messaging apps. They often use a tactic called spoofing, or impersonating a legitimate business or person, in an attempt to fool employees into clicking a link, opening an attachment, changing account information or conducting a financial transaction.

cyber-security-business-email-compromise-653x44

Clicking those links or opening those attachments can automatically install malware, which, depending on the type, could give the criminals access to your computer or device, install ransomware (in which malware infiltrates your system and cyber criminals hold your business hostage until a fee is paid), and even allow them to burrow further into your company's servers or the cloud. Let them in and they could steal your company’s confidential information and destroy the reputation you’ve worked hard to build with customers.

While the impact of such a cyber event can seem overwhelming, there are things you can consider doing to help protect your business, your customers and your employees from email scams. Consider these best practices:

  • Avoid clicking on links or attachments from untrusted sources.
  • Educate employees to be alert to emails, messaging and phone calls that may be fraudulent.
  • Use verified contact information from within the company’s internal contact management system when verifying requests to change information or transfer funds.
  • Require multiple-person approvals for account and financial change requests.
  • Encourage employees to ask questions and challenge suspicious activity before acting on requests.

For tips on what to do if you think your business has experienced a cyber event, download Cyber-Security Checklist: Consider Taking These Steps If Your Business Has Been Attacked, and share it with your employees.

"More for you

Connect with an advisor and start a conversation about your goals.

1.866.706.8321
9am - 9pm Eastern, Monday - Friday

Have questions for your financial advisor?

Connect with to continue the conversation.

View Profile

Phone

Email

View Profile

Share:

    why-ml-advisor

    LEARN MORE ABOUT WORKING WITH MERRILL LYNCH

  • With over 14,000 financial advisors nationwide, find one who fits your needs.

  • Explore how you work with a Merrill Lynch Financial Advisor

    Start

  • Join us July 21 at 2pm ET as top thought leaders explore a year like no other.

    Visit now
    1. 6 Classic Elder Fraud Scams—and How You Can Help Prevent Them

      6 Classic Elder Fraud Scams—and How You Can Help Prevent Them

      Read more

Information for:

Corporations & Institutions Job Seekers Media & Journalists Shareholders

Get in touch:

Contact Us

Connect with us:

SEC Share Class Selection Disclosure Initiative

 

Investing involves risk. There is always the potential of losing money when you invest in securities.

Asset allocation, diversification and rebalancing do not ensure a profit or protect against loss in declining markets.

Merrill, its affiliates, and financial advisors do not provide legal, tax, or accounting advice. You should consult your legal and/or tax advisors before making any financial decisions.

This material is not intended as a recommendation, offer or solicitation for the purchase or sale of any security or investment strategy. Merrill offers a broad range of brokerage, investment advisory (including financial planning) and other services. Additional information is available in our Client Relationship Summary.  

Merrill Lynch, Pierce, Fenner & Smith Incorporated (also referred to as “MLPF&S” or “Merrill”) makes available certain investment products sponsored, managed, distributed or provided by companies that are affiliates of Bank of America Corporation (“BofA Corp.”). MLPF&S is a registered broker-dealer, registered investment adviser, Member SIPC and a wholly owned subsidiary of BofA Corp.

Insurance and annuity products are offered through Merrill Lynch Life Agency Inc., a licensed insurance agency and wholly owned subsidiary of Bank of America Corporation.

Trust and fiduciary services are provided by Bank of America Private Bank, a division of Bank of America, N.A., Member FDIC, or U.S. Trust Company of Delaware. Both are wholly-owned subsidiaries of Bank of America Corporation.

Banking products are provided by Bank of America, N.A. and affiliated banks, Members FDIC and wholly owned subsidiaries of Bank of America Corporation.

Investment, insurance and annuity products:

Are Not FDIC Insured Are Not Bank Guaranteed May Lose Value
Are Not Deposits Are Not Insured by Any Federal Government Agency Are Not a Condition to Any Banking Service or Activity
© Bank of America Corporation. All rights reserved.
ARVVP9PY-EXP-2020-10-09
X

You need to answer some questions first

Then we can provide you with relevant answers.

Get started