NIPR has identified an active phishing email campaign targeting producers, and immediate caution is advised. These fraudulent emails reference past due invoices and may appear to originate from familiar or trusted domains, including @nipr.com, @naic.org, or @stripe. These messages are fraudulent and were not sent from an official NIPR email address or account.
The emails falsely claim to be from NIPR and request payment. Any unexpected or unsolicited invoice should be treated as suspicious.
What We’re Doing to Protect You
NIPR takes the security of our clients and partners seriously and is taking immediate action to address this threat.
- Our cybersecurity team is actively investigating and monitoring this phishing activity.
- Prominent warning alerts have been posted on NIPR.com and within the Licensing Center to increase awareness.
- The NIPR Billing team is proactively communicating with clients and collecting details to support NAIC’s security investigation.
- NIPR, via NAIC, sent a notification to all Commissioners.
- NIPR will be sending a broadcast email to its state and industry contacts the week of April 13.
Immediate Actions You Should Take
Your vigilance is critical in preventing financial loss and data compromise.
- Share NIPR’s phishing information webpage with all producers as soon as possible.
- If you receive an invoice email claiming to be from NIPR that was not expected, stop immediately and take no action.
- Do not open attachments, click links, or submit payment in response to suspicious or unexpected invoice emails.
- If there is any doubt about the legitimacy of an invoice or email, contact niprbillingdept@nipr.com before responding or taking further action.
For more information, please visit the NIPR’s phishing awareness page.
Thank you for your continued diligence and partnership in protecting our industry from fraud.
#goldencareagent