Presentation is loading. Please wait.

Presentation is loading. Please wait.

Workshop on online fraud and electronic payment frauds

Published bySolomon Hopkins Modified over 5 years ago

Similar presentations

Presentation on theme: "Workshop on online fraud and electronic payment frauds"— Presentation transcript:

1 Workshop on online fraud and electronic payment frauds
Bucharest, November 2018 Social engineering, BEC/CEO fraud : a challenge for investigators and prosecutors

2 Agenda Overview Evolution of BEC
Versions of BEC & Money Laundering Trends Investigative Avenues Private Sector Vulnerabilities Partnerships and prevention

3 BEC Statistics Oct 2013 – May 2016
Global Victims Reach 22,143 and $3,086,250,090 Loss Exposure! Oct 2013 – Dec 2016 Global Victims Increase to 40,203! Loss Exposure Bounds to $5,302,890,448! 72% Increase in 6 Months! More than 131 countries have recently been impacted by BEC!

4 CEO Impersonation

5 Security Breach Scams

6 Supplier Fraud

7 Other types of BEC VERSION 1: REAL ESTATE TRANSACTIONS
Intrusion Actor monitors progress of real estate transactions and changes the payment type (check to wire) or bank account details VERSION 2: UNIVERSITIES WITH CONSTRUCTION CONTRACTS Spoofed Domains Actor impersonates construction firm and requests payment be routed to a new account VERSION 3: AIRLINES Actor requests funds be sent to U.S. bank accounts Actor using address of a legitimate U.S. company in wire transfers Recently occurred in Canada and China!

8 Versions of BEC VERSION 4: MICROSOFT OFFFICE 365 CUSTOMERS
Account Payable Manager of the company targeted with spear phishing Redirected to harvesting site to reset Office 365 password Actor sent s from Accounts Payable Manager (victim) to partner bank which manages bill payment Instructed funds to be sent to “actor-owned” account

9 BEC Evolution VICTIM: VICTIM: VICTIM:
Companies with Chinese Business Relationships VECTOR: Intrusion (Man-in-the-Middle) FUNDS: Hong Kong & Mainland China Bank Accounts VICTIM: Companies from US (All Sectors) VECTOR: Spoofed Domain Less Intrusion FUNDS: Global Bank Accounts VICTIM: Foreign Companies (All Sectors) VECTOR: Spoofed Domain FUNDS: Global Bank Accounts

10 Fraud Hints Direct contact by a senior official you are normally not in contact with Unusual request in contradiction with internal procedures Request for absolute confidentiality Use of particularly alarming tone by an IT/security officer Sudden change in contact/payment details of an international supplier Change occurring shortly after a significant order was passed or shortly before a deadline for payment

11 Prevention and Detection

12 How do fraudsters conceal their identity?
Use forged documents with legitimate company logo/signatures obtained online •Use copycat addresses •Disguise the origin of the call through applications faking the caller’s identity (display the number of the service/individual they impersonate) •Use VOIP and proxy servers to lower the risks of detection •Use the services of illicit call centres based outside the EU

13 BEC Trends – Money Laundering “Human Infrastructure” is key
Domestic U.S. Accounts Multiple “hops” before leaving US Romance Scam Mules Increased use with domestic “hops” Prepaid Cards Some can accept prepaid cards and wire transfers Cashiers Check Actor contacted bank client team and requested funds in the form of a cashier’s check “Human Infrastructure” is key

14 Digital Money

15 Bitcoin ATM by continent
Future of BEC Money Laundering Global Partners Reporting Bitcoin! 3,989 Bitcoin ATMs 72 Countries Bitcoin ATM by continent

16 Investigative Avenues
Global & Domestic Money Recovery Processes X-Sender / Reply-To Accounts Summer Surge Malware & Keyloggers Spoofed Domains Phishing s/Domains Forums/Social Media Research – BEC Manuals Lists for Purchase Private Sector Insight

17 Investigative Avenues
.

18 Malware&Keyloggers Predator Pain Redpill Hawkeye Limitless
Olympic Vision

19 Spoofed Domains

20 Spoofed Domains Domain Categories Self-Named Fake Organizations
Impersonating Legitimate Organizations Targeting of Domains Legal Process to Tucows Replicate with BlueHost and 1&1 Data Usage Registrant information for fraudulent accounts Domains and IPs for DMARC and other authentication tools

21 Compromised accounts

22 Case study – BEC Case and money laundering for 2 mil. Euro
Funds redirected in China and Japan IP Adresses USA Source of the funds Destination of the funds

23 Ionut STOICA Senior Project Officer
Workshop on online fraud and electronic payment frauds Bucharest, November 2018 Va multumesc! Ionut STOICA Senior Project Officer Cybercrime Programme Office (C-PROC) Council of Europe

Download ppt "Workshop on online fraud and electronic payment frauds"

Similar presentations

By: Jason Baltazar MIS 304 Credit Card Fraud and Prevention.

By: Jason Baltazar MIS 304 Credit Card Fraud and Prevention.
Current Fraud Trends Kathy Druckenmiller, CFCI, CIRM, ACT Specialist April 29, 2014 4/29/2014.

Current Fraud Trends Kathy Druckenmiller, CFCI, CIRM, ACT Specialist April 29, /29/2014.
1 And Tips to Avoid Becoming a Victim Recent Cyber Crime Cases.

1 And Tips to Avoid Becoming a Victim Recent Cyber Crime Cases.
1 Treasury Management Services Superior service. Working capital expertise. Innovative solutions. Client Implementation.

1 Treasury Management Services Superior service. Working capital expertise. Innovative solutions. Client Implementation.
The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.

The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.
How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.

How It Applies In A Virtual World. Phishing Definition: n. To request confidential information over the Internet under false pretenses in order to fraudulently.
Hacker’s tricks for online users to reveal their sensitive information such as credit card, bank account, and social security. Phishing emails are designed.

Hacker’s tricks for online users to reveal their sensitive information such as credit card, bank account, and social security. Phishing s are designed.
Phishing and Pharming New Identity Theft Threats Presentation by Jason Guthrie.

Phishing and Pharming New Identity Theft Threats Presentation by Jason Guthrie.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Australian High Tech Crime Centre What is cybercrime & trends Monday 5 November 2007.

Australian High Tech Crime Centre What is cybercrime & trends Monday 5 November 2007.
Phishing – Read Behind The Lines Veljko Pejović

Phishing – Read Behind The Lines Veljko Pejović
Chapter 4 Billing Schemes.

Chapter 4 Billing Schemes.
E-Banking is the use of electronic means to conduct banking business, such as telephone, Internet, cell phone, or other device by way of secure internet.

E-Banking is the use of electronic means to conduct banking business, such as telephone, Internet, cell phone, or other device by way of secure internet.
Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.

Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.
First Community Bank www.fcbnm.com Prevx Safe Online Rollout & Best Practice Presentation.

First Community Bank Prevx Safe Online Rollout & Best Practice Presentation.
Confidential On-line Banking Risks & Countermeasures By Vishal Salvi – CISO HDFC Bank IBA Banking Security Summit 2009.

Confidential On-line Banking Risks & Countermeasures By Vishal Salvi – CISO HDFC Bank IBA Banking Security Summit 2009.
Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.

Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.
FRAUD, ONE OF THE FASTEST GROWING SEGMENTS OF OUR INDUSTRY Joseph Bajic, Chief Compliance Officer and Vice-President, Compliance.

FRAUD, ONE OF THE FASTEST GROWING SEGMENTS OF OUR INDUSTRY Joseph Bajic, Chief Compliance Officer and Vice-President, Compliance.
Adam Soph, Alexandra Smith, Landon Peterson. Phishing is a way of attempting to acquire information such as usernames, passwords, and credit card details.

Adam Soph, Alexandra Smith, Landon Peterson. Phishing is a way of attempting to acquire information such as usernames, passwords, and credit card details.
Web Spoofing Steve Newell Mike Falcon Computer Security CIS 4360.

Web Spoofing Steve Newell Mike Falcon Computer Security CIS 4360.

Similar presentations

Ads by Google