Our bank's website has been “spoofed” by a foreign website. The foreign website has a different but very similar URL and content almost identical to our site. Do you have any tips on what steps we should take?
In addition to following your regular BSA/AML policies and procedures, we recommend contacting your federal regulator, and your state's cybercrimes unit or Attorney General as soon as possible. We also recommend adding a “pop-up” or greeting page on your own website that explains the issue to your online visitors, and keeping it up until the fake site is removed. Furthermore, consider sending out a warning e-mail to at least all your online banking customers--if not all your customers--notifying them of the issue.