The FBI's Cyber Division is looking into more than 400 reported cases of corporate account takeovers, Cyber Division Assistant Director Gordon Snow told the House Financial Services Committee's Subcommittee on Financial Institutions and Consumer Credit in Sep. 14 testimony.
The cases involve unauthorized ACH and wire transfers from the bank accounts of U.S. businesses, which typically began with phishing e-mails sent to employees within targeted companies, who unknowingly installed malware by opening attachments or links, Snow said in the testimony.
Criminals stole approximately $85 million from their victims, but attempted theft of more than $255 million, the FBI said.
The malware usually contains a keylogging program that allows criminals to capture sensitive online banking information and steal funds, which is often transferred overseas; this type of crime has affected small and medium-sized businesses, local governments, school districts and health care service providers, the FBI said.
“Malicious cyber incidents are costly and inconvenient to financial institutions and their customers, and although most businesses take action to recover quickly, limit impact to customers and ensure long-term operational viability, the increasing sophistication of cyber criminals will no doubt lead to an escalation in cyber crime,” Snow said in the testimony.
The testimony also warned of growing third-party payment processor breaches, ATM skimming, point of sale schemes and mobile banking exploitation. Newer threats involve sophisticated ATM skimming devices, such as Bluetooth-enabled wireless skimmers that were found at a number of gas stations in the Denver area, and malicious “tweets,” which criminals are sending through iPhone Twitter apps and contain links to malware.
The recent phishing crimes follow a string of widely publicized attacks in 2011, including the e-mail address security breach at marketing firm Epsilon and a skimming scam that targeted national craft chain Michaels.
Complete your profile to continue reading and get FREE access to CUTimes.com, part of your ALM digital membership.
Your access to unlimited CUTimes.com content isn’t changing.
Once you are an ALM digital member, you’ll receive:
- Breaking credit union news and analysis, on-site and via our newsletters and custom alerts
- Weekly Shared Accounts podcast featuring exclusive interviews with industry leaders
- Educational webcasts, white papers, and ebooks from industry thought leaders
- Critical coverage of the commercial real estate and financial advisory markets on our other ALM sites, GlobeSt.com and ThinkAdvisor.com
Already have an account? Sign In Now
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
Natasha Chilingerian
Natasha Chilingerian has been immersed in the credit union industry for over a decade. She first joined CU Times in 2011 as a freelance writer, and following a two-year hiatus from 2013-2015, during which time she served as a communications specialist for Xceed Financial Credit Union (now Kinecta Federal Credit Union), she re-joined the CU Times team full-time as managing editor. She was promoted to executive editor in 2019. In the earlier days of her career, Chilingerian focused on news and lifestyle journalism, serving as a writer and editor for numerous regional publications in Oregon, Louisiana, South Carolina and the San Francisco Bay Area. In addition, she holds experience in marketing copywriting for companies in the finance and technology space. At CU Times, she covers People and Community news, cybersecurity, fintech partnerships, marketing, workplace culture, leadership, DEI, branch strategies, digital banking and more. She currently works remotely and splits her time between Southern California and Portland, Ore.
