NBSB Notifies Businesses About SBA COVID-19 Loan Relief Scam

North Brookfield Savings Bank’s is always there for our business communities. We make it our mission to ensure businesses are notified of ways to protect their business they work so hard for in the first place. This includes alerting business owners and their employees to scams like the one discussed below.


About the Spoofed SBA Website Scam

The Cybersecurity and Infrastructure Security Agency (CISA), a U.S. Government agency, issued a scam alert recently affecting businesses. The alert included details about an unknown malicious cyber actor who is targeting small businesses through phishing emails.  The phishing email contains a link which redirects the viewer to a spoofed or fake version of the Small Business Administration’s (SBA) COVID-19 relief webpage. This is where the credential stealing or pharming takes place, when the viewer is prompted to enter credentials into the website that is unknowingly fake. Learn more about phishing and pharming below.

The phishing email contains:

  • Email Subject line: SBA Application – Review and Proceed
  • Email Sender: Sender is from a fake email address beginning with “disastercustomerservice”
  • Email Body Text: Text urges the recipient top click on a hyperlink which is malicious

The full alert released from the Cybersecurity and Infrastructure Security Agency provides more detailed information, including the IP address, indicators of compromise, and recommended mitigations for small businesses and organizations to take to strengthen their cybersecurity posture. Read the alert.

A screenshot of the webpage you arrive at by clicking on the hyperlink in the email is included below. You will see the malicious URL and the area where the scammers attempt to have unsuspecting site visitors enter their credentials.


About Phishing, Pharming & How They Are Related

Phishing is when scammers send out unsolicited, or spam emails that appear to be from a legitimate source; perhaps from your bank, school, well-known merchants, your internet service provider, or even a trusted government agency, and attempt to trick you into divulging personal information.

Pharming is when scammers seek to obtain personal or private information by making fake websites appear legitimate and requesting you provide your information. Your internet browser will seem like you are at the correct website. This makes pharming more difficult to detect than phishing.

Phishing & Pharming go hand-in-hand:  First, scammers build a fake website that looks legitimate. Next, they sends out thousands of phishing emails with a link to the fake website. Then, victims click the link in email believing it is legitimate and enter personal information. Last, scammers compile the stolen data to sell online or use themselves. Don’t click on links in emails that ask for personal information, never open unexpected attachments, and delete suspicious emails or links, even if you know the source. If you want to visit a website visit it directly and not through a link in an email.


Whether it is business related blog topics, business focused events or notifications about cyber threats that could affect your business, North Brookfield Savings Bank is there to help. You can learn more about COVID related scams with NBSB’s article: “COVID-19 Fraud & Scam Awareness”, more about other scams by reading “Types of Scams and their Red Flags”, or you can access our other business blog articles here.

We also provide comprehensive resources through our online Security Center that allows you to quickly take action, based on the scam type, through our Report Fraud and Scams webpage. You can also contact us if you need to speak with a North Brookfield Savings Bank representative about your concerns.