Cyber security news for all

More

    Hundreds of multinational companies aimed by Russian BEC Gang

    According to the security firm Agari, there has been a discovery of a newly uncovered Russia-based business email compromise gang; BEC gang that scams hundreds of multinational corporations in about 40 countries from 2019.  Cosmic Lynx, which Agari suggests as the name of the gang, employ social engineering techniques and well-written email messages crafted to scam the upper level of executives as stated by the report. The researchers think about 200 of these types of schemes are already done by this group, and some will continue into July.

    In about 3/4th of the BEC attacks that were examined by Agari, it was found that the gang was looking to lure those with titles like the managing director, vice president, or general manager. In most cases, it attacks were on organizations that lack security authentication checks and protections, which include reporting and conformance, domain-based message authentication, or DMARC. The report reveals that this gang always sends emails that replicate the CEO’S profile.

    Cosmic Lynx sophisticated operation

    As of July 2019, these fraudsters show themselves to be representatives from a company located in Asia that are working with a known company to transact payments for potential owners. The members of these gangs have hijacked the ownership of legal law firms that are located in the UK—posing as external legal counsels that are working on a fictitious deal, as stated by the report. Agari has also revealed that they aims to make the executives of these companies their targets to move  funds to bank accounts in Eastern Europe or Hong Kong, which are handled by these criminals.

    Cosmic Lynx tactics

    These criminals do make research by using commercial services to build a list of people to get their emails that will replicate other executives and start manipulating data as revealed by the report. They have come up with ways of moving past email protection tools like DMARC.

    Cosmic Lynx Russia ties

    It seems cosmic Lynx is one of the first organized Russia based groups that has expanded into the BEC fraud if we are to go by Agari report.

    Recent Articles

    Unauthorized access at Scalable Capital

    There has apparently been unauthorized access to individual data at Scalable Capital. The company informed its customers about the incident by mail yesterday, referring...

    The US accuses Russian officers of being in charge for cyber attacks

    The US government has brought charges against Russians who are alleged to have been involved in various cyber attacks as officers of the military...

    Twitter changed its rules for dealing with hacked data

    On Friday night, access to Twitter was disconnected for about two hours. The Chief Engineer announced that the reason was a rebuild in the...

    Norway sees Russia as the perpetrator of the cyber attack

    "It is important that our government refuses to send the Russians a clear sign that we do not know," said the Norway government. According...

    Phishing mail with an incorrect form for Corona bridging aid

    The representation of the European Commission warned of a phishing attempt targeting small and medium sized enterprises. Under the pretext for corona bridging aid,...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox