![]() ![]() ![]() This led the firm to believe Bank of America could have done more to stop the attack. However, it added that the sending bank can cancel the instructions if the transfer has not yet been processed. It said it processes money based on instructions from the remitting bank. The Bank of China later revealed how it deals with wire transfers. After emailing the Bank of China in Hong Kong, they received a message that stated it couldn’t do anything until after a court order had been obtained. ![]() Unfortunately, the law firm didn’t have much success with this either. Instead, it suggested contacting the receiving bank. However, the bank said it was too late to do anything as the transfer had already been made. The law firm’s actions following the attack show how little can be done once the money has been sent.Īs soon as the employee realized what had happened, they notified Bank of America and asked it to stop the transfer. Once an Attack is Carried Out, There is Little You Can Do It was only after he spoke to Bragg about the transfer that the company realized it had fallen victim to wire fraud. This all meant the employee did not feel the need to question the authenticity of the request. It is not known if the hacker knew this was the case, but it seems likely. The email exchange was made more plausible - and harder for the victims to discover - because Bragg was traveling in Seattle at the time. A sense of urgency was created by request to make the transfer first thing in the morning. The hacker sent details of the bank account they wanted the money to be sent to and specified which of the law firm’s accounts the money should be sent from. The email even called the member of staff by his nickname. These included the partner’s signature line and knowledge of financial transactions the law firm had made. The hacker obtained the details that made the email convincing from information found in the email account. From here, they were able to send emails that appeared to come from Bragg’s address to an employee of the firm. The original court filing contains details of the attack.įirstly, the hacker gained access to Bragg’s Microsoft Exchange Email account. The email was convincing due to its use of intimate knowledge of the firm’s business. How Was the Wire Fraud Attempt Carried Out?Īn employee made the transfer after receiving payment instructions in an email claiming to be from Gary Bragg, one of the partners at the firm. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |