Back
Logo  
august 2024
 

Real-life Case: Ministry of Education recovers 2.5 million euros paid out in computer fraud

Social engineering applied to cybersecurity is a valuable tool for cyber attackers who can creatively and effectively deceive their victims. Curiosity, fear, shame and guilt are some of the human characteristics exploited by cyber attackers to deceive and extort their victims. One current example is the so-called CEO fraud attack. This happens when an employee authorised to make payments is tricked into paying a fake invoice or making an unauthorised bank transfer from the company account. In other words, the cyber attacker calls or sends an email posing as a high-level figure within the company (e.g. CEO or CFO), usually demanding an urgent payment or a change of bank details.

Cyber attacks are becoming increasingly sophisticated, and in the case of CEO fraud attacks, cyber attackers are managing to look more realistic. It is therefore crucial for organisations and those within them to know how to prevent a CEO fraud attack and, more importantly, to know the best cybersecurity practices in a real attack situation.

In our "Real Cases of Cyberattacks" section, we shared a real CEO fraud attack that targeted the Portuguese Ministry of Education due to a computer scam. The cyber attacker posed as an official from the service provider company and requested that the payment IBAN be changed, leading to three bank transfers to a fraudulent IBAN. The Portuguese Ministry of Education managed to report the incident and recover around 2.5 million euros.

CEO fraud attacks have a significant impact on organisations and their employees and everyone must be better prepared for situations like this. Read here the practices that we consider fundamental and that could have been adopted by the Portuguese Ministry of Education to avoid this type of situation.
Intro
 

Archive

2024

 Can deepfakes influence election results?

 Real-life Case: Ministry of Education recovers 2.5 million euros paid out in computer fraud

 Zero Trust Model

 Real-life Case: Fraud in company due to remote hiring

 The future of passwords

 Generative Artificial Intelligence: Managing Security Risks

 Real-life Case: The City Council of Seville in Spain has suspended all telematic services due to a ransomware attack

 What is Spoofing?

 Authentication in Cyberattack Prevention

2023

 Cybersecurity trends for 2024

 10 Steps for Safe Online Shopping

 October, the Cybersecurity Month

 How to Protect the Privacy of Your Mobile Phone and Tablet

 Social Media, a risk to cybersecurity

 8 tips to protect your information in the Cloud

 10 tips for cybersecurity that parents should know to protect children from online risks

 Prevention starts with creating a password

 Cybersecurity and ChatGPT

 Backups | The Guardian of Data Loss

 Dangers and challenges of AI in cibersecurity. Are you prepared?

 Phishing, Smishing and Vishing | Best Practices

2022

 Online fraud attempts to be on the alert in 2023

 Online shopping security | What we recommend

 Cybersecurity Awareness | 8 habits to have at Home and at Work

 Cybersecurity & Cookies

 Cybersecurity on Holiday and Travel

 Cloud Security

 Ransomware Awareness

 Mobile Security

 Physical Security

 Social Engineering

 PII or Personally Identifiable Information

 Cybersecurity trends for 2022

2021

 Avoid IoT Disasters

 Cybersegurity Quiz

 SOUP-D Tips to protect yourself from cyberattacks

 Multi-Factor Authentication

 Deepfake

 Zero Trust

 Ransomware

 Dangers when using a VPN

 Identity Theft in the Cloud

 Mobile Malware

 Creating Passwords

 Internet of Things

2020

 Identity Theft and Internet Fraud Scams

 Secure Online Shopping

 Think before you click quiz

 Proper use of the Internet

 Spear Phishing

 Security of PC's and other devices

 Vishing

 Backups

 Communication/Video tools

 Cybersecurity when working remotely

 Formjacking

 Ransomware

 Phishing

2019

 Online Shopping

 Passwords

Subscribe our newsletter.


Cookie Consent X

Devoteam Cyber Trust S.A. uses cookies for analytical and more personalized information presentation purposes, based on your browsing habits and profile. For more detailed information, see our Cookie Policy.