The FBI released a statement this week warning small and medium businesses about a significant increase in fraud involving valid online banking credentials.
“Within the last several months, the FBI has seen a significant increase in fraud involving the exploitation of valid online banking credentials belonging to small and medium businesses, municipal governments, and school districts. In a typical scenario, the targeted entity receives a “spear phishing” e-mail which either contains an infected attachment, or directs the recipient to an infected website. Once the recipient opens the attachment or visits the website, malware is installed on their computer. The malware contains a key logger which will harvest each recipient’s business or corporate bank account login information.”
The victims in this particular type of scheme are being referred to as “Money Mules” because they simply serve as a conduit between the SMB’s business bank account and the hacker’s bank account. In most cases, the funds disappear to a foreign bank account too quickly for the cyber theft trail to be detected.
It makes sense that small and medium businesses are targeted most often; hackers score more dollars per incident from business banking accounts than consumers. As a result of the heightened risk associated with the Money Mule scheme, the FBI encourages all business banking customers that use online banking to contact their financial institution and inquire about the security measures in place to help prevent Money Mule attacks.
Financial institutions that host their website in a secure hosting environment will be prepared to address customer inquiries with confidence and adequacy.
“More and more banks and lending institutions are opting to protect their online banking customers from fraudulent schemes before a cyber crime incident happens,” encourages FireHost CEO, Chris Drake. “We’re helping globalize the initiative by making enterprise-grade secure hosting affordable for small, private, and regional financial institutions.”
This entry was posted on Thursday, November 5th, 2009 at 6:00 am and is filed under Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
