Report: Majority of BEC scams reported to FBI had funds wired to China and Hong Kong

Bradley BarthJuly 28, 2016

Eighty-three percent of fraudulent money transfers reported to the FBI as the result of business email compromise (BEC) scams are wired to banks in China and Hong Kong, CNN has reported, following an FBI presentation at the International Conference on Cyber Security in New York Tuesday.

James C. Trainor, Jr., assistant director of the FBI's Cyber Division, offered up the statistical nugget in a speech detailing BEC schemes, which typically involve spoofing or typosquatting the email addresses of corporate executives, then sending official-looking communications to employees, tricking them into transferring funds or disclosing data.

The report notes that the hackers can operate from anywhere, despite the emphasis on Chinese and Hong Kongese financial institutions. Trainor stated that if victims contact the FBI within 72 hours, the agency can often trace the money and work with the Chinese banks to return stolen funds, provided they weren't withdrawn.

Bradley Barth

As director of community content at CyberRisk Alliance, Bradley Barth develops content for SC Media online conferences and events, as well as video/multimedia projects. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.

Ransomware

Investigation into Sony cyberattack launched amid threat actors’ dispute

SC StaffSeptember 27, 2023

Japanese multinational conglomerate Sony has begun an investigation into an alleged cyberattack, which was reported to have resulted in the exposure of 3.14 GB of data in hacking forums, amid the emergence of different attackers claiming to be behind the hack, according to BleepingComputer.

Threat Intelligence

Attacks targeting Openfire vulnerability underway

SC StaffSeptember 27, 2023

BleepingComputer reports that vulnerable Openfire messaging servers impacted by the already addressed high-severity authentication bypass flaw, tracked as CVE-2023-32315, are being subjected to ongoing attacks aimed at ransomware encryption and cryptominer distribution.

Incident Response

T-Mobile refutes employee data breach

SC StaffSeptember 25, 2023

T-Mobile has denied being impacted by a cyberattack in April that compromised employee information after VX-Underground reported that it had been notified by threat actors of the attack, which occurred immediately after the telecommunications provider was breached in March, according to The Record, a news site by cybersecurity firm Recorded Future.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Report: Majority of BEC scams reported to FBI had funds wired to China and Hong Kong

Related

Investigation into Sony cyberattack launched amid threat actors’ dispute

Attacks targeting Openfire vulnerability underway

T-Mobile refutes employee data breach

Related Events

Incident Response: Lessons from the front lines of Fortune 500 cyber attacks

Real-world Insights from a Sophos Threat Analyst: It’s Great You Have a Firewall, But Here’s Why You Shouldn’t Skip Over MDR

Incident Response War Stories: When MDR Would Have Made the Difference

Get daily email updates