Connect with us

Hi, what are you looking for?

Technology

Interpol arrests 11 BEC gang members linked to 50,000 targets

Interpol red


Interpol arrests 11 BEC gang members

In coordination with the Nigerian Police Force, Interpol has arrested 11 individuals suspected of participating in an international BEC (business email compromise) ring.

BEC is a type of attack conducted via email involving the spear-phishing of certain company employees responsible for approving payments to contractors, suppliers, etc.

By impersonating a coworker, a supervisor, or a client/supplier, BEC actors manage to divert payments to their bank accounts, essentially stealing them from the targeted company.

In the latest Interpol operation codenamed ‘Falcon II,’ which unfolded between December 12 and 22, 2021, the police followed leads provided by cyber-intelligence firms Group-IB and Palo Alto Networks’ Unit 42 to arrest suspects in Lagos and Asaba.

Members of the TMT gang

According to the forensic investigation and the evidence collected so far, Interpol believes that at least some of the arrested individuals belong to the BEC gang known as TMT (aka SilverTerrier).

This is the second blow for the particular group after Interpol arrested more of their members in the context of ‘Falcon I’ back in 2020.

“This preliminary analysis indicates that the suspects’ collective involvement in BEC criminal schemes may be associated with more than 50,000 targets,” details Interpol’s announcement.

Advertisement. Scroll to continue reading.

“One of the arrested suspects was in possession of more than 800,000 potential victim domain credentials on his laptop.”

“Another suspect had been monitoring conversations between 16 companies and their clients and diverting funds to ‘SilverTerrier’ whenever company transactions were about to be made.”

Hiding behind banks

BEC scammers cannot siphon funds in the form of untraceable cryptocurrencies, so the only way for them to hide is by moving the stolen amounts around, attempting to obscure the money trace.

Unfortunately, many banks, especially in countries where weak money laundering regulations apply, insist on protecting their clients’ identities and refuse to revert transactions that were part of payment diversion fraud acts.

However, the international collaboration and information exchange between law enforcement and intelligence agencies worldwide make it increasingly challenging for BEC actors to remain hidden.

How to defend against BEC

When requested to send money or to change to conduct all payments to a new bank, you may pick up the phone and call the supplier/colleague to confirm it.

For this, use the phone number you have confirmed to be valid in past communications and not any new numbers provided in the email.

To protect your email account from takeover, enable multi-factor authentication along with a strong and unique password.

Organizations should also secure their domain from spoofing by registering potential domain typo-squatting candidates and instructing employees not to over-share business information online.

Advertisement. Scroll to continue reading.



Source link

Click to comment

Leave a Reply

Latest

Loan And Finance

Authored by Liberty Specialty Markets Liberty Specialty Markets (LSM), part of Liberty Mutual Insurance Group, announced the appointment of Parul Kaul-Green, to the newly...

Top Stories

Boris Johnson, who has been the prime minister of the United Kingdom since 2019, said he will step down as leader of the country’s...

Online Business Success

By Jon Clark, managing partner at Moving Traffic Media, a New York digital agency offering SEO, PPC, and Amazon marketing services. getty We know...

Loan And Finance

Watch now: How is the distribution landscape changing in insurance? Johnson said that his company’s interaction with independent agencies was a major driver in...

Loan And Finance

Tencent Music Entertainment Group (TME) has partnered with Dolby Laboratories to make its Dolby Atmos service available on QQ Music, one of China’s largest...

Loan And Finance

In February, Keatly Haldeman announced that he was exiting his role as CEO of Riptide Music to launch a Web3 music sync licensing platform,...

Advertisement

You May Also Like

Uncategorized

Introductions get a lot of attention. I’ve explored the topic of how to write them even though as a reader, I always skip them....

Online Business Success

The internet is now our nervous system. We are constantly streaming and buying and watching and liking, our brains locked into the global information...

SEO Guide

There are all kinds of pictures of the world on the internet, but to find one of these specific pictures that you want to...

Online Business Success

You can think of link building in many ways. I like to call it tedious, painful, and a test of patience. It’s also necessary...

Advertisement