Catalin Cimpanu reports: Business email compromise (BEC) has overtaken ransomware and data breaches as the main reason companies filed a cyber-insurance claim in the EMEA (Europe, the Middle East, and Asia) region last year, said insurance giant AIG. According to statistics published in July, AIG said that BEC-related insurance filings accounted for nearly a quarter…
Category: Phishing
Phishing scheme gains entry to Oregon Judicial Department emails
Aubrey Wieber reports: A phishing scheme succeeded in breaking into the email accounts of five Oregon Judicial Department employees, exposing personal information of more than 6,000 people. A forensic team determined that none of the information has been used in an inappropriate way so far. Read more on Mail Tribune.
NZ: Hospital emails stolen in phishing scam
CCDHB reports: A Capital & Coast DHB staff member has fallen victim to an email phishing scam which took thousands of emails from their address to other email addresses across New Zealand and internationally. But no private or patient information has been compromised. The staff member’s email address was immediately locked down to prevent further…
Portland Public Schools Recovers $2.9 Million Lost in BEC Scam
Sergiu Gatlan reports: Oregon urban school district Portland Public Schools is on track to recover roughly $2.9 million wired by district employees to a BEC scammer, after discovering the fraudulent transactions before the money left the fraudster’s accounts. Portland Public Schools is a PK-12 urban school district in Portland, Oregon, with over 49,000 students enrolled in 81 schools,…
Adwind Spyware-as-a-Service Attacks Utility Grid Operators
Tara Seals reports: A phishing campaign targeting utility grid operators uses a PDF attachment to deliver spyware. A phishing campaign that spoofs a PDF attachment to deliver Adwind spyware has been taking aim at national grid utilities infrastructure. Adwind, a.k.a. JRAT or SockRat, is being used in a malware-as-a-service model in this campaign, researchers said….
Police recover chunk of Spotsylvania County money stolen in phishing scam
On Thursday, Scott Shenk reported some good news after a phishing attack in July stole more than $600,000 from Spotsylvania County: On Thursday afternoon, [Virginia] State Police Sgt. Brent Coffey said in a news release that they worked with local police as well as “state law enforcement in other states in order to track down…