Cyber Security & Phishing Prevention Tips for Churches

Adapted from the Diocese of Maine

Cybersecurity Information & Resources

Phishing in churches

Please beware of email and text “phishing” in West Tennessee churches. Fraudulent email and text requests for money wire transfers and gift cards in the names of Bishop Phoebe, other clergy, and church personnel continue to circulate around our diocese.

The names on these attempts may be familiar, but the email address or phone number used will not be the one you know. No one from the Bishop’s office will ask you for gift cards or similar items (for themselves or for others) via email or text. Please don’t answer these messages!

Nobody’s email or phone has been “hacked”. Phishing and whaling are when someone creates a NEW email or profile to impersonate a real person. Mark these phishing or whaling scams email addresses as spam, block, and report them to your provider. Phone numbers should be blocked. You may also report these attempts to the government here on the Department of Homeland Security page.

Learn more:

“Whaling” email attacks: How to foil them from the Diocese of Newark

Phishing Scams Targeting Pastors: Who’s Next? from Government Technology

Please stay safe! Take caution in responding to any message that seems unlikely or suspicious. 

Church Directory Phishing Scam 

The latest variant of identity-theft/phishing scams is to send an email to a church staff person, pretending to be someone affiliated with the church, and asking for a digital copy of your parish directory.

Remember, scammers use email or text messages to trick you into giving them your personal information by making the message appear as though it is from someone you know and trust.

Here are some tips to help you stay safe online:

  • Don’t click on links that might be suspicious.
  • Verify, using a method other than email, if a request for information is legitimate.
  • Never send money or personal information (names, addresses, social security numbers, etc.) without confirmation

For more information, visit the FTC’s How to Recognize and Avoid Phishing Scams.