The US Financial Industry Regulatory Authority (FINRA) has issued a regulatory notice warning US brokerage firms and brokers of an ongoing phishing campaign. The financial regulator says that the phishing messages are being sent from a recently registered web domain spoofing a legitimate FINRA website. FINRA has requested that all services for the finra-online[.]com domain be suspended. The domain used in these phishing attacks was registered just two days ago, on March 3rd, using the NameCheap domain name registrar.
Source: https://www.bleepingcomputer.com/news/security/ongoing-phishing-attacks-target-us-brokers-with-fake-finra-audits/