Treasury Insights

Staying Focused on Cybersecurity and Fraud Prevention

The tremendous uncertainty triggered by the pandemic has offered many opportunities to would-be cyber criminals. With this in mind, we are actively supporting our clients through our own learnings from past experiences and through the current and unfolding crisis. 

After the initial shock of the COVID-19 crisis, we have observed tentative but encouraging signs. Governments have put into place extraordinary measures to support their economies and companies have triggered their business continuity plans. The financial system has also proven resilient in the face of unprecedented volatility.

However, as companies have transitioned a majority of their operations and staff into remote and virtual-first terrain, this has also opened the door for bad actors. Would-be cyber criminals are looking to exploit telework situations, gaps in remote authentication and other vulnerabilities as entry points into companies' payment systems and flows.

In addition, the tremendous uncertainty triggered by the pandemic has offered these bad actors an additional tool in an already sophisticated toolbox that includes email spoofing, phishing and social engineering tactics directly targeting employees.

Since the start of the year, the number of registered domains featuring COVID-19 has spiked by over 750% — an indicator that attackers have begun to operationalize the pandemic itself as a cyberattack vector.

With this in mind, we are actively supporting our clients through our own learnings from past experiences and through the current and unfolding crisis.

To combat immediate risks around cybersecurity and fraud, we suggest focusing on five key priorities:          

1. Enable safe remote working

Remind employees of cybersecurity best practices when working remotely, such as securing home Wi-Fi networks, only using company approved communications tools, never sending work documents to personal email accounts, and keeping personal device operating systems and applications
up-to-date with the latest versions.

2. Maintain awareness of surroundings

Remind employees to not conduct business over public Wi-Fi.

3. Follow established procedures

Ensure all staff are aware of organizational procedures for authenticating callers, reporting suspicious activity and approving changes to account details or transactions, and that they are generally familiar with all procedures necessary for maintaining effective controls that protect your organization.

4. Ensure knowledge of response plans

Fully socialize plans and playbooks for how to escalate potential privacy incidents and ensure clear channels for staff to alert leadership of any emerging business disruption.

5. Test business continuity planning

Conduct regular resiliency tests and exercises to build increased preparedness among staff and ensure technology can effectively support contingency situations.

Be bold. Challenge yourself. Challenge your bank partners.

In these uncertain times, we thank you again for your continued trust in J.P. Morgan. Please contact your J.P. Morgan representative for further information. 

Webcast Series:
How Treasury and Payments can Lead in a Dynamic Environment

Enjoyed this article? Listen to our full webcast on this topic with subject experts from across J.P. Morgan discussing real-life examples. Registration is required.

Staying Focused on Cybersecurity and Fraud Prevention


Listen to our other webcast replays:


Managing Liquidity in a Dynamic Environment

How do you ensure sufficient liquidity and access to it? How do you direct liquidity to the right place, at the right time and in the right currency?

Maintaining Continuity with Treasury Operations in Turbulent Times

How has the triggering of business contingency plans impacted treasury, business and operations as staff shift to back-up or remote locations?

Harnessing the Power of Digital to Manage Disruption

What are the strategic challenges triggered by COVID-19 and what are the implications for treasury? Hear real-life case studies about how you can deploy digital capabilities to turn crisis into further opportunity.

Optimizing Working Capital for Today’s Challenges

What are the working capital pressures in the current environment? What are the best practices to consider in payables, receivables and inventory management and financing?

Registration is required for all webcasts.


The information provided is for educational and informational purposes only and is not intended, nor should it be relied upon, to address every aspect of the subject discussed herein. The information provided is intended to help clients protect themselves from cyber fraud. It does not provide a comprehensive listing of all types of cyber fraud activities and it does not identify all types of cybersecurity best practices. You, your company or organization are responsible for determining how to best protect against cyber fraud activities and for selecting the cybersecurity best practices that are most appropriate to your needs.

This material was prepared exclusively for the benefit and internal use of the JPMorgan client to whom it is directly addressed (including such client’s subsidiaries, the “Company”) in order to assist the Company in evaluating a possible transaction(s) and does not carry any right of disclosure to any other party.  This material is for discussion purposes only and is incomplete without reference to the other briefings provided by JPMorgan.  Neither this material nor any of its contents may be disclosed or used for any other purpose without the prior written consent of JPMorgan.

J.P. Morgan, JPMorgan, JPMorgan Chase and Chase are marketing names for certain businesses of JPMorgan Chase & Co. and its subsidiaries worldwide (collectively, “JPMC”). Products or services may be marketed and/or provided by commercial banks such as JPMorgan Chase Bank, N.A., securities or other non-banking affiliates or other JPMC entities.  JPMC contact persons may be employees or officers of any of the foregoing entities and the terms  “J.P. Morgan”, “JPMorgan”,  “JPMorgan Chase” and “Chase”  if and as used herein include as applicable all such employees or officers and/or entities irrespective of marketing name(s) used.  Nothing in this material is a solicitation by JPMC of any product or service which would be unlawful under applicable laws or regulations.

Investments or strategies discussed herein may not be suitable for all investors. Neither JPMorgan nor any of its directors, officers, employees or agents shall incur in any responsibility or liability whatsoever to the Company or any other party with respect to the contents of any matters referred herein, or discussed as a result of, this material. This material is not intended to provide, and should not be relied on for, accounting, legal or tax advice or investment recommendations.  Please consult your own tax, legal, accounting or investment advisor concerning such matters.

Not all products and services are available in all geographic areas. Eligibility for particular products and services is subject to final determination by JPMC and or its affiliates/subsidiaries.  This material does not constitute a commitment by any JPMC entity to extend or arrange credit or to provide any other products or services and JPMorgan reserves the right to withdraw at any time. All services are subject to applicable laws, regulations, and applicable approvals and notifications. The Company should examine the specific restrictions and limitations under the laws of its own jurisdiction that may be applicable to the Company due to its nature or to the products and services referred herein.

Notwithstanding anything to the contrary, the statements in this material are not intended to be legally binding.  Any products, services, terms or other matters described herein (other than in respect of confidentiality) are subject to the terms of separate legally binding documentation and/or are subject to change without notice. 

JPMorgan Chase Bank, N.A. Member FDIC.  

JPMorgan Chase Bank, N.A., organized under the laws of U.S.A. with limited liability.

© 2020 JPMorgan Chase & Co.  All Rights Reserved.