Let us be your IT department!
Call us Today! (703) 821-8200

 

 

Computerware

Computerware has been serving the Vienna area since 1976, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

$100 Million Hacking Incident Shows that No Company is Immune

$100 Million Hacking Incident Shows that No Company is Immune

It’s a tough lesson to learn, but almost any company is susceptible to cyber-attacks that take advantage of any security setup’s weakest link: the people involved. This lesson was most recently learned the hard way by two unnamed tech companies that fell victim to a phishing campaign that was allegedly run by Evaldas Rimasauskas, a Lithuanian man accused of stealing $100 million from them.

As Acting United States Attorney Joon H. Kim said, “This case should serve as a wake-up call to all companies--even the most sophisticated--that they too can be victims of phishing attacks by cyber criminals.” These words are only made more impactful by the fact that all the public knows about the two companies is that one of them is a “multinational online social media company” and the other a “multinational technology company.”

Rimasauskas is accused of orchestrating a phishing scheme that intended to sway his supposed victims into wiring large sums of money into accounts that he controlled in Latvia and Cyprus. According to the U.S. Department of Justice, this was accomplished by establishing a company in Latvia with the same name as a computer hardware manufacturer based in Asia, and telling the targeted companies that utilized the Asian computer manufacturer’s services that there were still balances to be paid. Once these funds were transferred, it seems that Rimasaukas would quickly disperse them into numerous other global bank accounts.

Due to his alleged use of these practices to defraud the two plaintiff companies, Rimasauskas faces a count of wire fraud potentially worth 20 years in prison, as well as three counts of money laundering, also worth a maximum of 20 years each, along with a single count of aggravated identity theft that carries a mandatory minimum sentence of two years in prison.

This story has two major takeaways: the first has to do with the victims of this scam. Although they are not named specifically, they are specified as multinational. This means that they are almost certainly very large companies, and the fact that they have elected to remain anonymous suggests that they are easily recognizable. Companies of that scale have the means and opportunity to protect their assets, but despite these companies most likely having these protections in place, Rimasauskas (or whomever was responsible) still managed to bypass them by exploiting the human element these companies had in place.

This only goes to show that every company, regardless of its size, is only as secure as its weakest security feature allows. When the company can be described as small or medium-sized, it becomes even more important to ensure that its defenses are universally held to high standards, especially when the human element is involved. To combat this, you must be sure that your staff knows the ways to ensure company security by heart. In essence, you have to be sure that your workforce isn’t any less security-oriented than the rest of your security is.

The second takeaway has to do with the methodology used to extract so many funds from the defrauded businesses. Hackers are human, after all, and as a result will more than likely take the easiest path to reach their goals. For every attacker that prefers to go after a few large, high-value targets, there are plenty that don’t mind having their ill-gotten gains coming in from many more, much smaller targets. If given the choice between figuring out how to work around a company’s cybersecurity or moving on to find an easier target, the hacker in question could very well move along and leave that company untouched.

However, if all the hacker has to do is write a few deceptive emails and set up a few bank accounts, they are much more likely to stay with that target, take what they can, and move on to another unfortunate company to do the same.

Therefore, the lesson here is that the basics of cybersecurity can’t be ignored in favor of just having enterprise-level security solutions in place. Very rarely are companies breached due to a highly advanced-effort, more often, it’s because there was an overlooked issue that the perpetrator took advantage of.

At Computerware, we know to look at the little details as well as the big picture. To talk about improvements to your IT, including its security, give us a call at (703) 821-8200.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Saturday, 19 August 2017
If you'd like to register, please fill in the username, password and name fields.

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Security Tip of the Week Technology Best Practices Privacy Internet Cloud Business Management Microsoft Workplace Tips Managed Service Provider Software Productivity Business Computing Backup Hackers Saving Money Hardware Data Business Malware IT Support Email Hosted Solutions IT Services Google Quick Tips Smartphones Efficiency Gadgets Mobile Devices Small Business Business Continuity Mobile Office Disaster Recovery Virtualization Network Computer Microsoft Office Server User Tips Windows 10 Miscellaneous Network Security Upgrade VoIP Social Media Windows Unified Threat Management Mobile Device Management Innovation Smartphone Passwords Operating System Remote Computing BYOD Communication Ransomware WiFi Vendor Management Marketing Mobile Computing Apps Android The Internet of Things Firewall History Holiday Facebook Managed IT services Users Remote Monitoring Analytics Apple Collaboration Data Management Save Money IT Consultant Alert Bring Your Own Device Automation Office Big data Health Content Filtering Hiring/Firing Phishing Managed IT Services Wireless Technology Search Virus App Lithium-ion Battery Outsourced IT Hard Drives Windows 8 Tech Support Best Practice Spam Going Green BDR Internet of Things Outlook Gmail Recovery Browser Productivity Employer-Employee Relationship Phone System Help Desk Budget Antivirus Printer Information Technology IBM Bandwidth Money Running Cable Saving Time Encryption Administration Maintenance communications Proactive IT Computers Data storage Customer Service Humor Education SaaS Save Time Mobile Device IT Support Document Management Hard Drive Office 365 Computer Repair User Black Market Intranet Government Networking Update Telephone Systems Risk Management Training Digital Payment Password Hacker Securty PowerPoint Tablet Managed IT Social Networking Solid State Drive Fax Server Flexibility Two-factor Authentication Twitter Wireless Website Travel Artificial Intelligence Legal iPhone Avoiding Downtime Business Intelligence Hacking Current Events Hosted Solution It Management Excel Robot User Error IT service Compliance Automobile Gaming Console Statistics Safety Social How To Webcam DDoS Network Congestion Streaming Media Business Growth Inbound Marketing Telephony Monitors Cybercrime Taxes Word YouTube Uninterrupted Power Supply Chrome Settings Cortana Cost Management Router End of Support Computer Accessories Comparison Co-managed IT Customer Relationship Management Processors Downtime USB Law Enforcement Augmented Reality Presentation Politics Company Culture Cloud Computing Text Messaging Lifestyle Virtual Desktop Hack VPN Documents Programming Laptop Heating/Cooling Data Backup Office Tips Retail Net Neutrality Paperless Office Experience Sports Public Cloud Computing Pain Points Cybersecurity Competition Notifications Video Surveillance Upselling Trending Webinar Saving ZTime Business Owner WannaCry Reliable Computing LinkedIn Computer Malfunction Mobility Virtual Reality Music Time Management Application Social Engineering Archive Upgrades Debate Bluetooth LiFi Specifications Motion Sickness Tracking Computing Infrastructure Point of Contact Touchscreen Best Practives Digital Signature Windows 10 Rental Service Deep Learning Memory Visible Light Communication Thin CLient Entertainment Digital Web Server Workers Wi-Fi Microserver Websites Start Menu Flash Advertising Leadership Access Analytic Samsung Turn Key Google Wallet Software as a Service Trojan Public Speaking G Suite Displays Device Management Organize Unified Communications Spyware Physical Security Tablets Banking Drones Disaster Entrepreneur HIPAA Data Protection Business Managemenet File Sharing online Currency Sync CCTV Language Permissions Electronic Payment cache Google Maps Business Metrics switches IP Address Corporate Profile In Internet of Things Writing Mouse Emails Human Resources Assessment Chromebook Scalability GPS VoIP Skype Messenger Harddrive Meetings Work/Life Balance Cryptocurrency Consultation Teamwork Cabling Download Private Cloud External Harddrive Google Docs Ebay 3D IT consulting Storage Books Administrator Recycling Supercomputer Cleaning PDF Keyboard Best Available Worker Microchip Machine Learning Smart Phones Pirating Information Get More Done CIO Adminstration Regulations Printer Server Windows XP Domains Product Reviews Reading Distributed Denial of Service Read Employer Employee Relationship Society eWaste Google Drive Shortcut Value Licensing Hacks Content Management Micrsooft Troubleshooting Electricity Relocation Botnet Identity Theft Staffing Environment CrashOverride Data Recovery Capital 3D Printing Productuvuty

hp supplies medallionLarge2017