Call us today on: +44 (0)203 88 020 88
SecureTeamSecureTeamSecureTeamSecureTeam
  • Home
  • Our Services
    • Infrastructure Testing
      • Internal Network Penetration Test
      • External Network Penetration Test
      • Vulnerability Assessment
    • Web Application Penetration Test
    • Configuration Review
      • Windows Build Review
    • Information Assurance
      • ISO 27001 Gap Analysis
    • Cyber Essentials Certification
  • News
  • Articles
  • About
    • About SecureTeam
    • Cookie Policy
    • Privacy Notice
    • Website Terms & Conditions
    • White-Label Consultancy
    • Jobs
  • Contact Us

News

Home  >  News  >  Email fraud costs Nikkei millions
NextPrevious

Email fraud costs Nikkei millions

News, Uncategorized | 5 November, 2019 | 0

Publishing giant Nikkei has reported they have lost $29million in an email fraud.

In a press release they said:

In late September 2019, an employee of Nikkei America, Inc. (New York City, United States) (“Nikkei America”), a subsidiary of Nikkei Inc. (“Nikkei”), had transferred approximately 29 million United States dollars (approximately 3.2 billion Japanese Yen) of Nikkei America funds based on fraudulent instructions by a malicious third party who purported to be a management executive of Nikkei.

Email fraud is a popular means of attack against businesses of all sizes.  Larger organisations are more likely to experience targeted attacks proceeded by phishing campaigns to gather information – as the larger potential pay-off makes it worth the criminal’s time to gather the intelligence.

The losses at Nikkei come shortly after another Japanese giant, Toyota Boshoku, reported that they had fallen for a similar fraud and paid away 4 billion yen.

Office 365 now includes new features to help defend against impersonation based phishing attacks.

While technology to detect the faked emails is helpful, staff training is also a vital defence against so called CEO Fraud email scams.

 

Subscribe to our monthly cybersecurity newsletter
Stay up-to-date with the very latest cybersecurity news & technical articles delivered straight to your inbox
We hate spam as much as you do. We will never give your email address out to any third-party.
cyber security news, microsoft, phishing

Related Post

  • MS Office now most targeted malware vector

    By Mark Faithfull

    Kaspersky has recently published information on what their security products are observing in their clients systems – and the dramatic rise of MS Office as a malware target. In 2016 MS Office was the targetRead more

  • Spike in Star Wars themed malware campaigns

    By Mark Faithfull

    The release of the final Star Wars movie this month has been accompanied by a surge in fake download sites offering early or free access to the film while really depositing malware onto fans computers.Read more

  • Oauth attack against Office365

    By Mark Faithfull

    A novel attack vector has been seen in the wild: using OAuth permissions to compromise Office365 Accounts Reported by anti-phishing security firm PhishLabs, the new attack leverages the persistent permissions of OAuth authentication to getRead more

  • Voicemail phishing campaign targets Office365

    By Mark Faithfull

    McAfee  reports that a trio of malware kits are being actively used to target Office365 users. The phishing emails contain a clip of audio pretending to be from a voicemail intended for the recipient.  A shortRead more

  • Malware shifting from MS Office to OpenOffice

    By Mark Faithfull

    In the eternal arms race between malware writers and anti-virus vendors, a new front of attack is opening.  As security software has responded to the use of MS Office files as a means for malwareRead more

NextPrevious

Recent Posts

  • Internet Explorer zero-day RCE attack
  • Microsoft advises SIEM to help defend RDP
  • What is SIEM?
  • What is Cable Haunt?
  • Final Windows 7 Patches and critical security bug fixed

Tags

blockchain Bluetooth Chrome Cisco credential stuffing CREST cyber crime cyber essentials cyber security cyber security news Data Protection Dell DNS Ethereum Exchange Server exim fileless formjacking GDPR Intel Linux MacOS Meltdown microsoft OAuth patching PDF penetration testing phishing ransomware RDP Row Hammer security breach security testing SIEM Spectre supply chain attacks Sysinternals TPM UK Law VNC vulnerability management web applications web browsers wireless

Archives

  • January 2020
  • December 2019
  • November 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • June 2019
  • May 2019
  • April 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • November 2018
  • July 2018
  • June 2018
  • April 2018
  • January 2018
  • October 2017
BCS Cyber Essentials Cyber Essentials Cyber Essentials PLUS
information. secured.
  • Home
  • Our Services
    • Infrastructure Testing
      • Internal Network Penetration Test
      • External Network Penetration Test
      • Vulnerability Assessment
    • Web Application Penetration Test
    • Configuration Review
      • Windows Build Review
    • Information Assurance
      • ISO 27001 Gap Analysis
    • Cyber Essentials Certification
  • News
  • Articles
  • About
    • About SecureTeam
    • Cookie Policy
    • Privacy Notice
    • Website Terms & Conditions
    • White-Label Consultancy
    • Jobs
  • Contact Us
SecureTeam
SecureTeam use cookies on this website to ensure that we give you the best experience possible. If you continue to use our site we will assume that you are happy with cookies being used.OkRead more