Be cautious when banking online - check that URL!
Because fraudsters are creating sites that look legitimate, always check the URL of the banking site you want to visit. Make sure it's legitimate before you log in or provide any information. A simple red flag to look for is a URL with “http” instead of “https”, or a slight misspelling in the name. Use a mobile app rather than a mobile browser.
When visiting a bank online, type the URL in the address bar rather than click on the link found in an Internet search. Make sure you use a device with anti-virus and malware protection, and for work-related banking, use VPN. Some anti-virus applications have browser checks to determine if the URLs are verified as legitimate or are risky. The same precautions should be taken when logging into email, applications, and social media.
In addition to your normal incident response protocols, please contact CTREmergencyNotification@mass.gov with any incidents or suspected incidents of fraud or cyber attacks or if you need assistance with internal controls.