Phishing Attacks Targeting PMI Chapter Websites

Unfortunately, cyber-attacks and phishing are on the rise and becoming more creative by the day—and PMI chapters and volunteers are not immune. Phishing is one of the most common tactics used to trick individuals into revealing personal or sensitive information. Phishing attacks seek to make an email, text message, or phone call appear to come from a coworker, volunteer, chapter member, or PMI employee who you know.

PMI is aware of several recent phishing attacks that have targeted chapters and volunteers. It is important that you remain vigilant and recognize phishing attempts to prevent a successful attack. If you receive an unsolicited, unexpected, urgent email asking you to do something unusual, either ignore the message or contact the sender directly using an alternative means to verify the authenticity of the message before responding or taking any action. Examples of alternative contact methods include using a secondary email, a text message, or a phone call. Do not reply directly to any email that is suspicious and do not open attachments in a suspicious email.

Another step you can take to protect your chapter is to include only necessary contact information on your chapter websites. While chapter leader names and email addresses can be helpful for networking, they have a potential for misuse. Consider using a “Contact Us” form or choosing a limited number of generic email addresses to display publicly.

For even more information, read the article Safety Zone on PMI.org.

If your chapter should encounter what reasonably appears to be a phishing attempt, please report it to your chapter partner.