+33 (0)2.22.06.80.93
CEO email Fraud: audit4mail helps you highlight information

CEO email Fraud: audit4mail helps you highlight information

CEO email Fraud: audit4mail helps you highlight information.

Transfer order scams have caused over $2.3 billion in damage since 2013, and claimed victims in every U.S. state and in at least 79 countries (figures); at least 17,642 victims (mainly companies) have suffered their disastrous consequences. Some have lost all, or at least part, of their cash flow. And in serious cases, it ended in the windup of the company.

A wire transfer is a financial transaction from one account to another. Once a wire transfer order is accepted by the banking system, it cannot be canceled: it’s irrevocable.

The scam attempt consists in getting a corporate collaborator to execute a transfer order for a seemingly good cause. But, in reality, it’s all for the benefit of a crook. There are two ways they can get in touch with your company: by phone and by email.

CEO email Fraud

 

By providing the means to conduct a careful analysis of email data, AUDIT4MAIL helps companies avoid getting duped by these clever con artists.

Listed below are the variations these types of scams can take (this list is not exhaustive), how to protect yourself from them, and how AUDIT4MAIL can help you:

The “fake president” scam

In this scenario, a scammer poses as a company executive and tries to convince one of your employees, by email, to perform an urgent and confidential transfer to an account (often based abroad). To do this, the scammer is simply using information about the company and its leaders that they’ve either gathered from the internet or culled from previous telephone conversations with the company.

How to protect yourself:

Verify the identity of the caller by contacting him again, this time using safe, common details (e.g. those from the corporate directory and not those supplied by the caller), or simply by consulting the “My timeline” interface on AUDIT4MAIL—you won’t regret it.

CEO email Fraud a4m

 

Check the email address: Sometimes scammers use addresses that closely resemble the real thing.

For example, they’ll use jean.dupont@sale-team.com instead of jean.dupont@sales-team.com. AUDIT4MAIL provides you with an at-a-glance indication if your contact truly is your daily operations partner.

AUDIT4MAIL will automatically distinguish between the two emails by comparing email addresses. You can therefore avoid fraud—and then notify the authorities!

The internal emails (in green) in normal interactions:

CEO email Fraud audit4mail

 

The email address of the person trying to steal an identity (in blue):

ceo email fraud.png

 

Notify your superiors: a well-intentioned person would not ask you to hide information from your managers.

Respect the separation of powers:
-If you possess the rights to make significant payments alone, you are at risk. Talk to your manager about this (no one should have all three powers of: transfer, entry, and validation for payment).
-The means of authentication and signatures are personal: never entrust them to a colleague, and refuse if a colleague shares theirs with you.
-The separation of roles doesn’t only protect the company, it also protects you.

The “bank details” scam

A scammer leads one to believe there has been a change of bank details of a lessor, a vendor, or any other creditor of the company, for the next rent payment (or any other type of bill). This may seem like a normal pattern in business activity, possibly due to a management consolidation at a group level, a new bank, etc. The scammer then sends back the new bank details by e-mail, the message possessing characteristics very similar to those from the usual contact (e-mail, mail header, etc.).

How to protect yourself:

Verify the identity of the caller by contacting them again using safe, common details (e.g. those in the corporate directory and not those provided by the caller) during any details change request (email, telephone number, etc.) or when providing new bank account details. Be sure to check AUDIT4MAIL’s “Account panorama” interface in order to verify the caller’s email. And while you’re at it, consider contacting another person from the company to validate the information.

audit4mail CEO email Fraud

Use 2 channels for accounts residing abroad (for example, verify identity by both email and telephone number).

Be suspicious if the new account is located abroad
The ISO country code is found in the first 2 letters of the IBAN, and the 5th and 6th letters of the BIC.
• Cyprus: CY17002001280000001200527600 – BIC: ABKLCY2N
• US: US7630046001290029721519546 -BIC: ABCDUS1N
• FR: FR7630046001290029721519546 -BIC: ABCDFR3N

Cover your customers’ and suppliers’ bases against computer intrusions.
Write to your customers to educate about the proper protocol and encourage them to follow the rules.

The “computer” scam

In this scenario, the scammer poses as a technician from the targeted company’s bank’s connectivity service and tries to convince the employee to execute “transfer tests.” They may also impersonate one of the company’s IT service providers and request the installation of software with the secret intent of recovering security information or hacking the company’s computer network.

How to protect yourself:

Contact your bank’s business manager using the usual contact information in order to verify the identity of any person claiming to be part of their team.
Refuse remote logins on your PC from any person whose identity is unverified: do not go to a suspect Internet address, do not click on suspicious links, etc.
Do not perform tests requested by a technician: Do not add third-party accounts and do not commit to transactions or discounts. Never do a transfer test with a higher value than $1, even if it comes from your initiative.
Never share personal codes with anyone (e.g. numbers generated by your wireless reader, passwords, PIN codes, etc.).
Protect both your computer network and your PC against intrusions and malware.

In case of fraudulent transfer or suspicion:

1- Warn your hierarchy
2- Contact your bank
3- Contact the police

How Audit4mail can help:

AUDIT4MAIL helps you distinguish your employees’ and partners’ emails from those of scammers via a quick-and-easy interface.

For more information contact us

contact us

Jérôme speaker at IBM Connect 2016

Jérôme speaker at IBM Connect 2016

IBM lotus to verse

Jérôme Deniau is a speaker at IBM Connect 2016!

Come and listen to Jérôme Deniau, our CTO here at move4ideas, on the 31st January 2016 at IBM Connect 2016.

His session number is #1216, don’t forget it!

Jérôme’s topic is “Smooth Migration from IBM Domino to IBM Verse : The Vital Metrics You Do Need”

“Session 1216 – Smooth Migration from IBM Domino to IBM Verse : The Vital Metrics You Do Need”

This session covers the vital metrics you need to monitor to make your IBM Verse migration from IBM Domino as smooth as possible.

You will learn how to get your metrics from your IBM Domino architecture and analyze them correctly with standard IBM Administrator tools, what other tools can be used to narrow your metrics, and specific use cases you can refer to.

 

Jérôme Deniau is an IBM Champion too!

Jérôme Deniau, CTO of move4ideas, is also an IBM Champion for Social Business 2016.

Once again this year Jérôme has been nominated and became an IBM Champion for the third time in a row.

Jérôme was an IBM Champion in 2014 and 2015!

jerome, IBM champion

MOVE4IDEAS is exibiting at Connect 2016

move4ideas is an exhibitor at IBM Connect 2016 in Orlando for the first time, and we are so excited!

Come visit us on booth #109 from January 31st to February 3rd and be the first to get a look at our brand new product!

You can schedule a meeting with us at Orlando, just send an email at : sales@move4ideas.com

More info about IBM Connect 2016:

“IBM Connect 2016 is the premier conference for social business and digital experience. Learn how to transform your business to a cloud-based services model, or expand your current portfolio of cloud offerings with innovative, market-leading solutions. Network with thought leaders, IBM executives, peers, and Business Partners in dedicated open-dialogue sessions and special receptions. Get your hands on and give your feedback on the latest IBM products and prototypes in the Design Labs.”
IBM Connect 2016

Have a look at their website for more information on the event: Official web site

Follow us on social media to stay tuned: @move4ideas

move4ideas at IBM Connect 2016

move4ideas at IBM Connect 2016

move4ideas is an exhibitor at IBM Connect 2016 in Orlando for the first time, and we are so excited!

Come visit us on booth #109 from January 31st to February 3rd and be the first to get a look at our brand new product!

You can schedule a meeting with us at Orlando, just send an email at : sales@move4ideas.com

Follow us on Twitter: @move4ideas

 

More info about IBM Connect 2016:

“IBM Connect 2016 is the premier conference for social business and digital experience. Learn how to transform your business to a cloud-based services model, or expand your current portfolio of cloud offerings with innovative, market-leading solutions. Network with thought leaders, IBM executives, peers, and Business Partners in dedicated open-dialogue sessions and special receptions. Get your hands on and give your feedback on the latest IBM products and prototypes in the Design Labs.”
IBM Connect 2016

Have a look at their website for more information on the event: Official web site

 

harry-potter_connect2016

 

This year theme park reserved is The Wizarding World of Harry Potter™ – Hogsmeade™ just for Connect attendees. You will receive unlimited access to the Dragon Challenge™ coaster and the groundbreaking new ride–Harry Potter the Forbidden Journey™. Clearly it’s an event you just can’t miss!

Register today at Connect 2016

IBM_cookie

You come to IBM Connect 2016 to discover new solutions, increase expertise, and make every moment count with your peers. But you also come for the cookie.In addition to IBM famous pretzel cookie, they’ll be making a new one—and you get to pick the ingredients.

Choose the ingredient to add in this years IBM Cookie here
We all hope to see you there!
Receive our latest posts by email

b75f1ea557b25fe6501193ea9051a4e8LLLLLLLLLLLLLLLLLLLLLL