Be aware: New phishing activity targets Key clients with a clever disguise.
October 2014 – Be aware of a dangerous new phishing scam that claims to be from KeyBank asking for your account information. The clever disguise is that they claim to be investigating an email phishing scam!
What to Know:
- Reports indicate some individuals have received fraudulent emails from parties claiming to be KeyBank and asking for Online Banking account and/or personal information.
- The message is designed to trigger an emotional reaction to trick the recipient into clicking the link.
- These emails are not from Key and should not be trusted.
- KeyBank will not contact you via email, phone, or text messages to ask for your account information or log on credentials.
- Phishing emails usually have links or attachments that send users to fake Web sites that host malicious code that can infect your computer.
What to Do:
- Always look for signs that it may be a phish; urgent tone, asked to take immediate action by clicking a link or an attachment, lack of personalization in the greeting. See an example of this phish pretending to be from KeyBank.
- Do NOT click any links, or open any attachments, in suspicious emails.
- If it appears to come from Key, forward the message to firstname.lastname@example.org, then delete the message from your email inbox.
- For clients or businesses, if you clicked on the link or opened an attachment, immediately contact Online Banking Support at 1-800-539-1539.
- For KeyBank vendors and suppliers, contact your internal Information Security or IT support team for help.
- If you are not a KeyBank client and have inadvertently clicked on a link in a phishing email or given your account or personal information over the phone, contact your bank immediately.