DEFENDERBOX - LOGO PNG
Test free of charge
Meet us at the March 17 on the Vodafone Cybersecurity Summit in Düsseldorf or at the March 18 & 19 on the secIT by Heise! Learn more here!
DEFENDERBOX - LOGO PNG
Arrange a demo appointment
All articles

CEO fraud costs almost 42.3 million dollars

CEO Fraud

Just got lucky again

One of the biggest cases of business email compromise fraud occurred back in July this year. A company from Singapore fell victim to the perfidious fraud scheme. The company in question received an email purporting to come from a supplier. It asked for an outstanding payment to be transferred to a new bank account. Nobody noticed that the e-mail address was slightly different from the supplier's official address. Accordingly, 42.3 million US dollars were transferred to the fraudulent account. The scam only came to light four days later when the real supplier contacted the company to remind them of the payment. The company reacted immediately and called the police, who called in Interpol. Within a few days, 39 million dollars were frozen from the fraudster's account. In addition, further investigations led to the arrest of seven suspects and the return of a further 2 million US dollars to the victim company.

Refined

CEO fraud, also known as Business Email Compromise (BEC), is an increasingly sophisticated form of financial fraud. Hackers gain access to executives' email accounts or imitate their identity in order to deliberately deceive employees and get them to make transfers to fake accounts. 

Typical procedure

The typical process looks something like this: The perpetrators first gain access to an email account of an executive, e.g. the managing director or CFO. They then send a message from this account to employees in accounting or financial administration, requesting an urgent transfer to a new account. In doing so, they imitate the writing style and habits of the manager concerned in order to feign the authenticity of the request. Sometimes, as in the example of the company from Singapore, the email addresses used differ only slightly from the official addresses.

Raising awareness helps

All employees need to be made aware of this. Our partner Pished.io offers automated security awareness programs that help to prevent this from happening. 

Be with the DEFENDERBOX One step ahead of cyber threats: strengthen your company's resistance to hacker attacks.

Would you like to know how secure your company is? Find out with a Test position out!

How vulnerable is your company really?

Find out - with the DEFENDERBOX.

  • Install via Plug & Play.
  • IT infrastructure can be checked automatically.
  • Recognize security gaps before others do and before it is too late.
TEST NOW

More DEFENDERBOX articles:

IHK-Siegen focuses on cybersecurity with the DEFENDERBOX

Hacker attacks are no longer only directed against large companies. In addition to public authorities, small companies are also targets....
Read more
Don't give hackers a chance.

89% critical security vulnerabilities

Cyberattacks and data leaks have serious consequences for companies, authorities and private individuals....
Read more

Keep your eyes open when it comes to cyber security

In the annual „ISC2 Cybersecurity Workforce Study 2023“, 14,865 cybersecurity professionals were surveyed online....
Read more