Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    CEO Fraud hits B.C. lawyers for $2 million

    CEO Fraud Checklist

    Two B.C. law firms were targets of so-called social engineering frauds causing almost $2 million in real estate and investment funds to be wired to people other than clients the firms believed they were sending money to.

    In one case, a client had received instructions for a fund transfer in person. Before the transfer, though, the firm received an email purportedly from the client. It was, however, from the fraudster and directed the firms to wire funds to a different account.

    The client never received the funds as the lawyer sent the funds to the fraudster's account. In this case, the email address used by the fraudster was identical to that used by the client.

    The second firm redirected over $1.5 million in investment funds held in trust for a corporate client raising capital in a securities transaction.

    As in the first case, the firm originally received payment instructions from the corporate client. And, before wiring the funds to the client, the firm received an email, purportedly from the client but actually from the fraudster, directing that the funds be wired to a different bank account. Usually, these criminals get into the email servers by sending phishing attacks, so that they can monitor the transactions and jump in at the right moment.

    Once again, funds were sent to the fraudster and not received by the client. In this case, the email address used by the fraudster was identical to that used by the client, except for one letter.

    The law society suggests lawyers, clients and other businesses can protect themselves in various ways against CEO Fraud:

    • Any time a payment is imminent, assume that a hacker is also aware. Any client's or lawyer's email account can get hacked allowing a fraudster to perpetrate a social engineering fraud on the lawyer;
    • Establish due diligence protocols for transferring funds and ensure all staff receive training and adhere to them; and
    • Be aware that scammers can replicate firm and company websites.

    Story at: https://www.squamishchief.com/email-fraud-hits-b-c-lawyers-for-2-million-1.23908460

    CEO-Fraud-Pages.jpg

    CEO Fraud Prevention Manual Download

    CEO fraud has ruined the careers of many executives and loyal employees. Don’t be next victim. This brand-new manual provides a thorough overview of how executives are compromised, how to prevent such an attack and what to do if you become a victim.

    Click Here To Download The Manual

    PS: Don't like to click on redirected buttons? Copy and paste this link in your browser:

    https://info.knowbe4.com/ceo-fraud-prevention-manual

     

    Return To KnowBe4 Security Blog

    Topics: Social Engineering, Phishing, CEO Fraud

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe to Our Blog


    Security Awareness Training
    Blog RSS Feed
    Comprehensive Anti-Phishing Guide
    All Posts

    Posts by Tag

    See all

    Posts By Topic

    View All

    Get the latest about social engineering

    Subscribe to CyberheistNews