Incident Watch


PHISHING ALERT – SPOOF BDMA EMAILS

We are aware BDMA email addresses are being spoofed as part of a phishing attack.

Emails are being sent out which appear to come from BDMA email addresses requesting payment of an overdue invoice, or similar.

THESE DO NOT ORIGINATE FROM THE BDMA

IF YOU HAVE RECEIVED A SUSPICIOUS COMMUNICATION:

DO NOT open any attachment or click on any link in the email.

Please forward the email to Action Fraud via their dedicated email address for this type of incident
NFIBphishing@city-of-london.pnn.police.uk

If you are a BDMA Member or receive regular communications from the BDMA, please let us know if you have been targeted by emailing info@bdma.org.uk

WHAT WE ARE DOING ABOUT IT:

We have put a number of measures in place to try and resolve this.  We have put in records (SPF, DKIM and DMARC) which tell people which is a legitimate bdma.org.uk email and which isn’t.  We have been advised that if people are still receiving the spoofed BDMA.org.uk emails then it means they are using an email system which isn’t doing SPF, DKIM and DMARC checks.

One additional change we are currently making is to change the DMARC record from quarantine (which means that emails that fail the DMARC check get put in the junk or spam folder) to block, which will tell mail providers to reject all emails that fail DMARC.  However, It’s worth pointing out that mail providers must be running DMARC checks for this to work effectively.

We apologise to anyone who has been inconvenienced as a result of this incident,
which we regret is beyond our control.

Further information and updates will be posted here if the situation changes.