• SecurePath for Auto Dealers
  • Services
    • SOC Reporting Services
      • SOC 2® Readiness Assessment
      • SOC 2® Reports
      • SOC 3® Reports
      • SOC for Cybersecurity® Reports
    • IT Advisory Services
      • IT Vulnerability Assessment
      • Network Penetration Testing
      • Privileged Access Management
      • Social Engineering Testing
      • Virtual CISO (vCISO)
      • Written Information Security Program (“WISP”)
      • IT General Controls Audit & Compliance
    • IT Government Compliance
      • CMMC Cybersecurity Services & Compliance
      • DFARS Compliance
      • FTC Safeguards Compliance
  • Industries
    • Financial Services
    • Government
    • Auto Dealerships
    • Enterprise
  • Blog
  • About Us
    • Meet The Team
    • Jobs
  • Contact Us

Call us today! 844-OCD-TECH

Find our Location
OCD TechOCD Tech
  • SecurePath for Auto Dealers
  • Services
    • SOC Reporting Services
      • SOC 2® Readiness Assessment
      • SOC 2® Reports
      • SOC 3® Reports
      • SOC for Cybersecurity® Reports
    • IT Advisory Services
      • IT Vulnerability Assessment
      • Network Penetration Testing
      • Privileged Access Management
      • Social Engineering Testing
      • Virtual CISO (vCISO)
      • Written Information Security Program (“WISP”)
      • IT General Controls Audit & Compliance
    • IT Government Compliance
      • CMMC Cybersecurity Services & Compliance
      • DFARS Compliance
      • FTC Safeguards Compliance
  • Industries
    • Financial Services
    • Government
    • Auto Dealerships
    • Enterprise
  • Blog
  • About Us
    • Meet The Team
    • Jobs
  • Contact Us

In Case You Missed It – CEO Fired After Wire Transfer Scam Results in $47 Million (USD) in Losses

July 18, 2016 Posted by W. Jackson Schultz, CISA Cybersecurity, IT Advisory Services, IT Security

In Case You Missed It – CEO Fired After Wire Transfer Scam Results in $47 Million (USD) in Losses

In May, the 17-year tenured CEO of an Austrian aerospace parts maker was fired after the company fell victim to a wire transfer fraud scheme, in which the attackers posed as one of the company’s senior executives and requested a wire transfer be performed. The mishap resulted in $47 million USD in losses. This costly blunder was due to a lack of procedural controls and red flags awareness training.

FACC, the company, additionally fired its CFO in February, shortly after the incident occurred in January. Intimate details surrounding the cyberattack have yet to be released, including who fell for the fake-email and who performed the transfer, but the company did state that it managed to recoup roughly $12.1 million USD. The decision to remove the CEO from his post was made by the supervisory board.

Wire transfer fraud scams are certainly on the rise and are not going away anytime soon. The Financial Services Information Sharing and Analysis Center (FS-ISAC) stated that 76% of all fraud attempts involve a wire transfer (follow them on Twitter). According to statistics released by Guardian Analytics, more than 130 million wire transfers take place each year (follow them on Twitter). And the key as to why hackers continue to use this method? It’s effective, and it works. The FBI reported that these scams have cost organizations more than $2.3 billion in losses over the past three years, according to an article by KrebsonSecurity from April of this year (follow him on Twitter).

Proactive measures can be taken to reduce the likelihood of susceptibility to falling for CEO email scams and wire transfer fraud. First, it is important to implement strong dual-controls, whether this be a call back procedure or requiring secondary approval on transfers that meet a transition limit threshold. In addition, security awareness training is key. Often times, there are glaring red flags in these malicious emails which may be overlooked by the untrained eye. Understanding the threat and education are key in responding to this particular fraud attempt.

If you have any questions regarding wire transfer fraud and CEO email scams, please contact:

Michael Hammond, CISA, CISSP, CRISC, C|EH (Follow us on Blue Sky)
Director, IT Audit Services at [email protected]

or

W. Jackson Schultz, CISA (Follow him on Twitter)
Senior IT Audit & Security Consultant at [email protected]

Tags: Penetration Testing
Share
0
Avatar photo

About W. Jackson Schultz, CISA

Jackson is a senior auditor with OCD Tech. Currently, Jackson performs IT audit control testing for OCD Tech clients.

You also might be interested in

OCD TECH PATCH MANAGEMENT

Patch Management

Sep 22, 2023

Is a crucial aspect of maintaining the security and stability[...]

The Most Vulnerable – Smartphones

Jul 13, 2016

Pokemon Go is just the latest example in a growing[...]

$650,000 HIPAA Fine

Jul 6, 2016

In a landscape-shaping turn of events, the first HIPAA Business[...]

Find us on

Contact Us

We're not around right now. But you can send us an email and we'll get back to you, asap.

Send Message
OCD Tech logo Audit. Security. Assurance.

IT Audit | Cybersecurity | IT Assurance | IT Security Consultants – OCD Tech is a technology consulting firm serving the IT security and consulting needs of businesses in Boston (MA), Braintree (MA) and across New England. We primarily serve Fortune 500 companies including auto dealers, financial institutions, higher education, government contractors, and not-for-profit organizations with SOC 2 reporting, CMMC readiness, IT Security Audits, Penetration Testing and Vulnerability Assessments. We also provide dark web monitoring, DFARS compliance, and IT general controls review.

Contact Info

  • OCD Tech
  • 25 BHOP, Suite 407, Braintree MA, 02184
  • 844-623-8324
  • https://ocd-tech.com

Follow Us

Videos

Check Out the Latest Videos From OCD Tech!

Services

SOC Reporting Services
– SOC 2 ® Readiness Assessment
– SOC 2 ®
– SOC 3 ®
– SOC for Cybersecurity ®

IT Advisory Services
– IT Vulnerability Assessment
– Penetration Testing
– Privileged Access Management
– Social Engineering
– WISP
– General IT Controls Review

IT Government Compliance Services
– CMMC
– DFARS Compliance
– FTC Safeguards vCISO

Industries

  • Financial Services
  • Government
  • Enterprise
  • Auto Dealerships

© 2025 — OCD Tech: IT Audit - Cybersecurity - IT Assurance

  • OCD Tech
  • About Us
  • Contact Us
Prev Next