Email scam nets $214 mn in 14 months: FBI

January 22, 2015
An email scam that targets businesses with bogus invoices has netted more than $214 million from victims in 45 countries in just over one year, an FBI task force says

An email scam which targets businesses with bogus invoices has netted more than $214 million from victims in 45 countries in just over one year, an FBI task force said Thursday.

The Internet Crime Complaint Center, a joint effort of the FBI and the nonprofit National White Collar Crime Center, said the losses were calculated from October 1, 2013 to December 1, 2014.

In the scheme, fake invoices are delivered to businesses which deal with overseas suppliers, asking for payment by .

"The fraudulent wire transfer payments sent to foreign banks may be transferred several times but are quickly dispersed," the task force said in a statement.

"Asian banks, located in China and Hong Kong, are the most commonly reported ending destination for these fraudulent transfers."

The scam has claimed 1,198 US victims and 928 in other countries, according to the statement. US firms have lost more than $179 million of the total.

The FBI "believes the number of victims and the total dollar loss will continue to increase," the statement said.

In one version of the scheme, a business which works with overseas supplier is contacted by phone, fax or email asking for payment. The emails are "spoofed" to look as if they came from the legitimate supplier. Phone and fax requests also appear genuine.

In another version, of high-level executives are compromised to allow the criminals to request a wire transfer, often including instructions to "urgently send" funds.

A third version of the scheme involves the hacking of an employee's email account, which then sends out bogus invoices to vendors or suppliers.

The FBI said vulnerable businesses should avoid using free Web-based emails for official accounts and to exercise caution about posting company information on websites and social media.

the group also suggests additional security steps such as two-step verification or digital signatures.

"Always verify via other channels that you are still communicating with your legitimate business partner," the statement said.

Explore further: US offers rewards for Romanian pair in online scam

Related Stories

Five ways to make your email safer in case of a hack attack

December 19, 2014

The Sony hack, the latest in a wave of company security breaches, exposed months of employee emails. Other hacks have given attackers access to sensitive information about a company and its customers, such as credit-card ...

Online scammers using 'FBI message' to demand money

August 9, 2012

The FBI warned computer users on Thursday to ignore a fake message, purportedly from its officers, that freezes people's screens and demands that they pay a fine for visiting inappropriate websites.

Internet fraud's U.S. price tag put at $550 million

March 15, 2010

U.S. citizens reported losing more than $550 million in 2009 in Internet fraud, falling prey to a variety of increasingly sophisticated scams, according to a report by the Internet Crime Complaint Center.

Recommended for you

Coffee-based colloids for direct solar absorption

March 22, 2019

Solar energy is one of the most promising resources to help reduce fossil fuel consumption and mitigate greenhouse gas emissions to power a sustainable future. Devices presently in use to convert solar energy into thermal ...

EPA adviser is promoting harmful ideas, scientists say

March 22, 2019

The Trump administration's reliance on industry-funded environmental specialists is again coming under fire, this time by researchers who say that Louis Anthony "Tony" Cox Jr., who leads a key Environmental Protection Agency ...

0 comments

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.