Stay Safe: Tips Against Email Imposters

Feb 26, 2025 | 2 Minute Read

Fraudsters are increasingly using spoofed emails to impersonate trusted contacts and steal sensitive information such as passwords or bank account details. These spoofed email addresses are designed to look like they are from your company. The Federal Trade Commission has provided information to keep you safe against business email imposters below.

How to protect your business:

  • Use email authentication – When you set up your business’s email, make sure the email provider offers email authentication technology. That way, when you send an email from your company’s server, the receiving servers can confirm that the email is really from you. If it’s not, the receiving servers may block the email and foil a business email imposter.
  • Keep your security up to date – Always install the latest patches and updates. Set them to update automatically on your network. Look for additional means of protection, like intrusion prevention software, which checks your network for suspicious activity and sends you alerts if it finds any.
  • Train your staff – Teach them how to avoid phishing scams and show them some of the common ways attackers can infect computers and devices with malware. Include tips for spotting and protecting against cyber threats in your regular employee trainings and communications.

What to do if someone spoofs your email:

  • Report it – Report the scam to local law enforcement, the FBI’s Internet Complaint Crimes Center at IC3.gov, and the FTC at FTC.gov/Complaint. You can also notify First Federal/Home Building Savings Bank’s fraud department at (812) 492-8200.
  • Notify your customers – If you find out scammers are impersonating your business, tell your customers as soon as possible — by mail, email, or social media. If you email your customers, send an email without hyperlinks. You don’t want your notification email to look like a phishing scam. Remind customers not to share any personal information through email or text. If your customers’ data was stolen, direct them to IdentityTheft.gov to get a recovery plan.
  • Alert your staff – Use this experience to update your security practices and train your staff about cyber threats.

Source: https://www.ftc.gov

If you have any questions regarding this matter, please call us at (812) 492-8200.