Recent FBI analysis reveals that cyber criminals engaging in ACH/wire transfer fraud have targeted businesses by responding via email to job postings online.
The bureau said more than $150,000 was recently stolen from a U.S. business via unauthorized wire transfer as a result of an email the company received that contained malware. The malware was embedded in an email response to a job posting the business placed on an employment website and allowed the attacker to access the online banking credentials of the person who was authorized to conduct financial transactions within the company. The hacker also changed the account settings to allow the sending of wire transfers within the United States and to Ukraine. T
The malware was identified as a Bredolab variant, svrwsc.exe, which was connected to the ZeuS/Zbot Trojan, a commonly used malware used deployed by cyber criminals to defraud U.S. businesses.