480.000USD furati prin inginerie sociala. Asiguratorul refuza sa acopere pierderile. — Krebs on Security

O companie din Texas a dat in judecata asiguratorul pentru refuzul de a acoperi suma de 480.000 USD pierdere ca urmare a unui atac de tip inginerie sociala in care cineva a reusit sa convinga prin email contabilul firmei sa vireze suma de mai sus catre o banca din China.

Dupa toate aparentele, infractorii cunosteau in detaliu relatiile interne din companie si modul de interactiune, astfel incat au reusit sa convinga contabilul ca emailul primit este legitim si provine de la CEO-ul companiei.


Firm Sues Cyber Insurer Over $480K Loss — Krebs on Security:
A Texas manufacturing firm is suing its cyber insurance provider for refusing to cover a $480,000 loss following an email scam that impersonated the firm’s chief executive.

The documents indicate that from May 21, 2014 to May 27, 2014, AFGlobal’s director of accounting received a series of emails from someone claiming to be Gean Stalcup, the CEO of AFGlobal.

According to the plaintiff, “the imposter seemed to know the normal procedures of the company and also that Gean Stalcup had a long-standing, very personal and familiar relationship with Mr. Wurm — sufficient enough that Mr. Wurm would not question a request from the CEO.”

Source: Firm Sues Cyber Insurer Over $480K Loss — Krebs on Security