Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




Fat bottom Trump
10184 posts

Uber Geek
+1 received by user: 5014

Lifetime subscriber

# 214316 6-May-2017 09:58
Send private message

"The number of business-email compromise cases, in which cyber criminals request wire transfers in emails that look like they are from senior corporate executives or business suppliers who regularly request payments, almost doubled from May to December of last year, rising to 40,203 from 22,143, the FBI said."

 

http://www.reuters.com/article/us-cyber-fraud-email-idUSKBN1811QH

 

 

 

 





I reject your reality and substitute my own. - Adam Savage
 


Create new topic
12967 posts

Uber Geek
+1 received by user: 4342

Trusted
Lifetime subscriber

  # 1776797 6-May-2017 10:37
Send private message

This is increasingly common in the UK, where criminals are hacking solicitor's email and sending fake mail that changes the bank account details that clients are asked to pay house deposits etc into.

 

Of course, one phone call to the solicitor to verify would uncover it but it seems quite a lot of people have been happy to pay hundred of thousands into wrong accounts on the strength of one email...doh!






BDFL - Memuneh
63854 posts

Uber Geek
+1 received by user: 14316

Administrator
Trusted
Geekzone
Lifetime subscriber

 
 
 
 


12967 posts

Uber Geek
+1 received by user: 4342

Trusted
Lifetime subscriber

  # 1776806 6-May-2017 10:49
Send private message

I worked for a company that bid for overseas work quite often when I was in the UK.

 

They once sent two engineers to South America to work up a bid over several months. Whilst there, the engineers requested GBP2 million from the company Treasury Department. For some inexplicable reason, they were wired the funds (about $4.5 million in current NZ).

 

Funnily enough, neither engineer ever returned to the UK .....!

 

That really was pretty stupid.






20412 posts

Uber Geek
+1 received by user: 6255

Trusted
Lifetime subscriber

  # 1776986 6-May-2017 21:27
One person supports this post
Send private message

We have had CFO customers (well trained, thanks) contact us after getting an email from their CEO requesting transfer of funds to other countries (UK/USA for example) that those companies deal with. They had obviously done a fair bit of research, they simulated the format of the customers email signature etc, knew the stakeholders. Pretty scary how real it looked. Thankfully they checked.


961 posts

Ultimate Geek
+1 received by user: 197

Trusted

  # 1777014 6-May-2017 23:43
Send private message

networkn: ... Pretty scary how real it looked. ...

 

Very scary indeed.

 

* I've seen signature details that are correct

 

* I've seen faked conversation history to make the request to transfer funds look more legit

 

* I've seen scammers initiate a conversation and only request a funds transfer on the 2nd/3rd email reply.

 

 





Please keep this GZ community vibrant by contributing in a constructive & respectful manner.


BTR

1513 posts

Uber Geek
+1 received by user: 459


  # 1777574 8-May-2017 10:47
Send private message

Have had a couple of these this year supposedly from our CEO but thankfully correct procedures were followed and it was noticed very quickly. 

 

 

 

 


20412 posts

Uber Geek
+1 received by user: 6255

Trusted
Lifetime subscriber

  # 1777585 8-May-2017 11:00
Send private message

Whilst it's an extra lot of work for a lot of companies who make a lot of overseas transactions, a lot of customers have now switched to weekly payment meetings where payments are approved by the stake holders. Second line of protection is that all transactions over a set amount requested by someone, must be followed up by a phone call.

 

Some companies I know have a weekly "code" that goes into payment request emails as an authorization.

 

 


 
 
 
 


dt

451 posts

Ultimate Geek
+1 received by user: 83


  # 1777588 8-May-2017 11:11
Send private message

It's very important to have users educated to look for the simple tell tail signs of these phishing attempts. 

 

Still surprises me when I see companies haven't done simple things like setup an SPF record to help their users identify these types of threats. 

 

 

 

We often have our "CEO" emailing our CFO asking for funds to be transferred immediately!


BDFL - Memuneh
63854 posts

Uber Geek
+1 received by user: 14316

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1777602 8-May-2017 11:30
Send private message

Another scam that's easy to overlook. Received an email today from "Wellington Victoria University" wanting to buy some hardware (obviously scammers didn't pay attention to what Intergen does).

 

Anyway, first thing was "victoriauniversity.org" instead of "vuw.ac.nz". I contacted a friend at Spark to report the scam - I suspected the phone number would be legit but the scammer would expect all the transaction to go via email (and if at any point a call was necessary s/he could give another number).

 

The phone number is registered to the US Embassy... So obviously the scammer just wanted a valid number there.





2880 posts

Uber Geek
+1 received by user: 1417

Lifetime subscriber

  # 1777675 8-May-2017 12:41
Send private message

freitasm:

 

Received an email today from "Wellington Victoria University" wanting to buy some hardware

 

 

These scams pan out in one of two ways:

 

1. You get paid for their order by a stolen credit card. This is fairly common with hotels.

 

2. The scammer uses your company name, bank account, etc to get people to send money to you. They feel safe because its an NZ bank account. 

 

In either case, the "order" is cancelled and you are asked to refund the money (less a good fee "for your trouble") via Western Union. Eventually the victims recover their money from you, and you've lost whatever you sent overseas untraceably.

 

 


Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Dunedin selects Telensa to deliver smart street lighting for 15,000 LEDs
Posted 18-Jul-2019 10:21


Sprint announces a connected wallet card with built-in IoT support
Posted 18-Jul-2019 08:36


Educational tool developed at Otago makes international launch
Posted 17-Jul-2019 21:57


Symantec introduces cloud access security solution
Posted 17-Jul-2019 21:48


New Zealand government unveils new digital service to make business easier
Posted 16-Jul-2019 17:35


Scientists unveil image of quantum entanglement
Posted 13-Jul-2019 06:00


Hackers to be challenged at University of Waikato
Posted 12-Jul-2019 21:34


OPPO Reno Z now available in New Zealand
Posted 12-Jul-2019 21:28


Sony introduces WF-1000XM3 wireless headphones with noise cancellation
Posted 8-Jul-2019 16:56


Xero announces new smarter tools, push into the North American market
Posted 19-Jun-2019 17:20


New report by Unisys shows New Zealanders want action by social platform companies and police to monitor social media sites
Posted 19-Jun-2019 17:09


ASB adds Google Pay option to contactless payments
Posted 19-Jun-2019 17:05


New Zealand PC Market declines on the back of high channel inventory, IDC reports
Posted 18-Jun-2019 17:35


Air New Zealand uses drones to inspect aircraft
Posted 17-Jun-2019 15:39


TCL Electronics launches its first-ever 8K TV
Posted 17-Jun-2019 15:18



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.