Over the last day, several members of the congregation have received phishing emails from someone posing as Rev. Andrzejewski. These emails are asking for a variety of things including requesting the purchase of gift cards.
𝗪𝗵𝘆 𝗦𝘁. 𝗣𝗮𝘂𝗹? 𝗪𝗵𝗮𝘁'𝘀 𝗽𝗵𝗶𝘀𝗵𝗶𝗻𝗴?
First, these attacks are common. They happen within various industries & organizations- unfortunately, including churches. Malicious actors attempt to gain information and/or money through pretending to be someone.
Second, it's important to know what to look for. Trust your instinct. If you get an email that seems 'fishy'- it likely is. If you believe the contact is legit & are unsure, you can always call the church office to verify communication.
𝗪𝗵𝗮𝘁 𝗮𝗿𝗲 𝘄𝗲 𝗱𝗼𝗶𝗻𝗴 𝗴𝗼𝗶𝗻𝗴 𝗳𝗼𝗿𝘄𝗮𝗿𝗱?
As of today, all emails sent from legitimate St. Paul accounts (@stpaulroyaloak.org) will have 'SPRO Verified' on the top. If you get a message that does NOT have this message- be very cautious.
All official church communication/interaction will be from @stpaulroyaloak.org accounts.
𝗜 𝗴𝗼𝘁 𝗮𝗻 𝗲𝗺𝗮𝗶𝗹... 𝘄𝗵𝗮𝘁 𝘀𝗵𝗼𝘂𝗹𝗱 𝗜 𝗱𝗼?
If you got a phishing email, forward it to the Anti-Phishing Working Group at email@example.com. This will help us prevent future attacks on other members of the congregation.
If you have any questions, feel free to comment below!