KnowBe4

Security Awareness Training Blog

CEO Fraud Blog

News about the latest CEO fraud attacks. See how the bad guys actually do this and how much money companies lose to this type of scam.

Business Email Compromise, Credential Theft, and Many Other Attack Vectors Surged as High as 5x in Q4 2018

The latest data from Proofpoint shows many types of cyberattacks making massive jumps in comparison to both previous quarters and years.
Continue Reading

Company Sues Employee After She Falls For USD 250K CEO Fraud Scam

A woman is being sued for sending approx. 250K of her employer's cash to an online fraudster.  Patricia Reilly, who was working for the UK Peebles Media Group fell for a CEO Fraud Scam ...
Continue Reading

Another Home Buyer Falls Victim to a Business Email Compromise Scam

A man in Portland, Oregon lost $123,000 after falling victim to a real-estate scam, according to Michele Lerner at The Washington Post. In December, Aaron Cole and his family were about ...
Continue Reading

Scam Of The Week: CEO Fraud bad guys are now bribing your users

Today saw the arrival of yet another interesting variant of the gift card phishing campaigns that have grown into a deluge over the past few months (see below). Today's email demonstrates ...
Continue Reading

Criminals Make Off With USD $150,000 in Business Email Compromise Real Estate Scam

Scammers stole $150,000 from a woman during a real estate transaction last year, according to Lisa Vaas at Naked Security. Mireille Appert, a Swiss woman who lives in the United States, ...
Continue Reading

Chinese Hackers Take Phishing and CEO Fraud to Another Level Raking in $18.6 Million

A talented group of Fraudsters used phishing, social engineering, and pure chutzpah to convince the India arm of Italian engineering company Tecnimont to part with millions of dollars.
Continue Reading

Finra punishes former Schwab broker for lying about role in $800,000 CEO Fraud scam

A former broker for Charles Schwab & Co.was fined $5,000 and suspended for 90 days by Finra for lying to Schwab about a CEO Fraud attack in which he wired nearly $800,000 to someone ...
Continue Reading

Judge Calls for County Officials to Resign After Falling Victim to a $500K CEO Fraud Scam

Months after a classic fraud scam took Galveston County for $525,000, County Judge Mark Henry is now asking for the County Auditor and Purchasing Agent to resign.
Continue Reading

Real Estate Transactions are Increasingly Vulnerable to CEO Fraud

The real estate industry is a particularly attractive target for BEC (Business Email Compromise—also known as CEO Fraud—attacks, according to FBI spokesman David Fitz. Fitz told The ...
Continue Reading

The FBI Catches CEO Fraud Scammers by Giving Them a Taste of Their Own Medicine

The case of how the FBI turned the tables on cybercriminals using the very same tactics demonstrates how powerful the art of social engineering and deception can get a victim to act.
Continue Reading

CEO Fraud Attacks are Citing the California Wildfires

Criminals are using the California wildfires as a social engineering tactic to manipulate people into buying gift cards supposedly intended for victims of the disaster, according to James ...
Continue Reading

Learning a 120K Lesson the Hard Way

The bank isn’t always responsible for making you whole after a business email compromise. Indiana’s Lake Ridge Schools lost more than $120,000 from a seven-million-dollar construction ...
Continue Reading

Attackers Impersonate CEOs to Scam Employees into Sending Gift Cards for the Holidays

A crafty mix of social engineering, great timing, and context act as the perfect ingredients to trick unwitting users into buying gift cards and placing them into the hands of the ...
Continue Reading

[Heads-up] Bad Guys Are Now Taking Over Email Inboxes Without Phishing Attacks

I found a great article in SecurityWeek by Alastair Paterson, the CEO of Digital Shadows. Could not have said it better myself, and he alerted everyone about an attack vector that was ...
Continue Reading

Hacked Law Firm Can't Claw Back $580,000 From Bank That Completed Transfer

Max Mitchell at Law.com has an interesting and rather painful story. Don't let this happen to your organization.
Continue Reading

[Heads-up] FIRED: Two C-level Execs Who Fall Victim To A Massive 21 Million Dollar CEO Fraud

Two top-level executives of movie chain Pathé—the Managing Director and the CFO—were fired recently, after it became clear that they fell for a massive CEO Fraud attack that could have ...
Continue Reading

[Heads-up] U.S. Government: "Your Weak Cyber Security Violates Federal Law"

Reuters just made me aware of a U.S. Securities and Exchange Commission report about a recent SEC investigation if nine companies that had been victims of CEO fraud had sufficient ...
Continue Reading

Brand-New Tool: Domain Doppelgänger Identifies Evil Twin Domains

I gave you a heads-up a few days ago, and now I'm excited to announce the actual release of a new tool to help protect your organization from the bad guys.
Continue Reading

Phishing Attack On Office 365 Account Leads To 3 Million CEO Fraud

A phishing attack on an Office 365-account enabled a 3 Mil CEO Fraud Scam at an investment firm.  Finnish antivirus company F-Secure reported on their blog. One of the employees at the ...
Continue Reading

[ALERT] CEO Fraud Escalates. Bad Guys Now Go After Employee Personal Address And Phone Number

KnowBe4 is observing a serious escalation of CEO Fraud. They are now requesting street addresses and personal phone numbers of employees—an attempt to contact and manipulate employees ...
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews