NOW:53208:USA01012
http://widgets.journalinteractive.com/cache/JIResponseCacher.ashx?duration=5&url=http%3A%2F%2Fdata.wp.myweather.net%2FeWxII%2F%3Fdata%3D*USA01012
41°
H 41° L 30°
Clear | 5MPH

Community Roll Call

Members of the Wauwatosa Police Department's Community Support Division, with backup provided by the folks at WauwatosaNow.com, are now blogging. We will be providing you with an ongoing series of crime prevention tips, any current crime trends as well as pertinent news and notes as it relates to your Police Department.

E-Mails Containing Malware Sent to Businesses Concerning Their Online Job Postings

Business Watch, Internet Safety, Scam, Security

This comes directly from the FBI Website.

Recent FBI analysis reveals that cyber criminals engaging in ACH/wire transfer fraud have targeted businesses by responding via e-mail to employment opportunities posted online. 

Recently, more than $150,000 was stolen from a U.S. business via unauthorized wire transfer as a result of an e-mail the business received that contained malware. The malware was embedded in an e-mail response to a job posting the business placed on an employment website and allowed the attacker to obtain the online banking credentials of the person who was authorized to conduct financial transactions within the company. The malicious actor changed the account settings to allow the sending of wire transfers, one to the Ukraine and two to domestic accounts. The malware was identified as a Bredolab variant, svrwsc.exe. This malware was connected to the ZeuS/Zbot Trojan, which is commonly used by cyber criminals to defraud U.S. businesses. 

The FBI recommends that potential employers remain vigilant in opening the e-mails of prospective employees. Running a virus scan prior to opening any e-mail attachments may provide an added layer of security against this type of attack. The FBI also recommends that businesses use separate computer systems to conduct financial transactions.  

For more information on this type of fraud and prevention tips, please refer to previous public service announcements at the links below:

 

Anyone who believes they have been a target this type of attack should immediately contact their financial institutions and local FBI office and promptly report it to the IC3’s website at www.ic3.gov. The IC3’s complaint database links complaints together to refer them to the appropriate law enforcement agency for case consideration. The IC3 also uses complaint information to identify emerging trends and patterns.

This site uses Facebook comments to make it easier for you to contribute. If you see a comment you would like to flag for spam or abuse, click the "x" in the upper right of it. By posting, you agree to our Terms of Use.

Page Tools