Impersonating government agencies and officials is nothing new. The Financial Industry Regulatory Authority, Inc. (FINRA) issued this detailed warning of this practice in 2016. Two years later, the Securities and Exchange Commission warned of calls from an imposter purporting to be to be a senior compliance officer. Now, it seems that it is the California Department of Business Oversight's turn to sound the alarm.
According to the DBO, several employees of its licensees have reported receiving suspicious emails with the return address of one of our examiners, Haben Hagos. The emails contain a link to a website that may contain malicious software or attempt to steal login passwords from visitors. These emails were sent by an individual outside the DBO and were crafted to appear to be legitimate emails from its examiner.