Scott County Schools victim of $3.7 million CEO Fraud Phishing Scam



GEORGETOWN, Ky. (WKYT) - Scott County Schools has announced the district is a victim of a multi-million dollar online CEO fraud scam. 

The FBI is now investigating after Superintendent Dr. Kevin Hub said an undisclosed vendor told the district it never was paid for an invoice from two weeks ago. As the district investigated, it learned it fell victim to a fraudulent email disguising as the vendor.
 
"This is a process that we use currently in Scott County Schools. It's a way that we pay our vendors. And it was in this specific case, a single case, that we can verify, and this fraudulent email and fraudulent documentation is what caused this crime to happen." Sounds like they could use some new-school security awareness training
 
The school lost $3.7 million as a result of the scam. Hub said the fraudsters no longer have access to the district's bank account, and there was no data breach involving personal information. Video at WKYT

 


Can hackers spoof an email address of your own domain? 

Are you aware that one of the first things hackers try is to see if they can spoof the email address of your CEO? If they are able to commit "CEO fraud", penetrating your network is like taking candy from a baby. 
DST

Find out now if your domain can be spoofed. Request your free Domain Spoof Test so you can address any mail server configuration issues that are found.  It's quick, easy and often a shocking discovery. Find out now if your email server is configured correctly, many are not!

Try To Spoof Me!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

https://www.knowbe4.com/domain-spoof-test/ 

Subscribe To Our Blog


Weak Password Test Contest




Get the latest about social engineering

Subscribe to CyberheistNews