Phishing Campaign Targets NIPR Clients in Delaware and Texas

Severity: Medium (Score: 54.9)

Sources: Propertycasualty360

Summary

The Delaware and Texas Departments of Insurance have issued warnings regarding a phishing campaign aimed at National Insurance Producer Registry (NIPR) clients. The fraudulent emails claim that recipients have past-due invoices and appear to originate from official domains such as @nipr.com, @naic.org, or @stripe.com. Licensees are advised to avoid opening attachments or clicking links in suspicious emails. Warning signs include unexpected invoices, urgent payment demands, and misspellings. Both states recommend reporting such emails to IT departments and ensuring staff are trained to recognize phishing attempts. Producers can verify email authenticity by contacting NIPR directly. The phishing attempts have raised concerns among insurance professionals in both states. Key Points: • Phishing emails impersonate NIPR, claiming past-due invoices. • Warnings issued by both Delaware and Texas Departments of Insurance. • Licensees advised to report suspicious emails and verify authenticity.

Key Entities

• Phishing (attack_type)
• naic.org (domain)
• nipr.com (domain)
• stripe.com (domain)
• T1566.002 - Spearphishing Link (mitre_attack)
• T1566 - Phishing (mitre_attack)