The CMA has unfortunately been a recent victim of email spoofing. As a result, it is possible that a phishing email using the CMA name or brand may be sent to you.
Here are some red flags to look out for:
Request for accounts and passwords: Any legitimate business already knows your account numbers and would not ask for this information.
Call for immediate action: A message that asks you to act now is hoping the sense of urgency will overcome your suspicions. It is often accompanied by some kind of threat that an account will be closed or purchase rejected.
Poor use of language: Awkward grammar, misspellings and bad syntax are indicators of a fraudulent message.
Request to click embedded links: Attackers will often try to get you to click on a link. Hover your mouse over the link without clicking and see if the pop-up message matches the known website address.
Wrong look and feel: Attackers may also try to include CMA logos to try to make the message look legitimate. Analyze the text: is this a normal communications or does something seem out of place?
If you have questions or concerns about an email from the CMA, please contact us at
firstname.lastname@example.org or 888-855-2555.