What is CEO Fraud?

what-is-ceo-fraud

Email has long been a core tool for business communications, whether it was directed internally, towards the employees or externally, towards suppliers, clients and other businesses.

Being such a vital tool for communication, the email is often subject to cyber attacks from hackers trying to steal your company’s money.

You may have heard of spam, phishing and spoofing as email threats to your data and computer, but have you heard of CEO Fraud?

Keep reading to find out what CEO Fraud is, discover 3 real-world examples and what to do to protect your company.

What is CEO Fraud?

FBI defines CEO Fraud as follows:

“A sophisticated scam that often targets employees with access to company finances and trick them using a variety of methods like social engineering and computer intrusions into making wire transfers to bank accounts thought to belong to trusted partners but instead belong to accounts controlled by the criminals themselves.” (source: fbi.gov)

This fraud is targeting businesses working with foreign suppliers and/or businesses that regularly perform wire transfer payments.

The scammers don’t discriminate: they target large corporations as well as small to medium sized companies.

This fraud originated in Nigeria but has spread throughout the world.

[bctt tweet=”In the last year, FBI reported the loss of over $3.7 billion due to CEO Fraud.” username=”brand_minds”]

How does CEO Fraud work?

The cybercriminals hack the email of an executive and use it to send email messages to a targeted employee working in the financial or accounting department. The impersonating message contains instructions to transfer funds to a specific bank account controlled by the scammer.

Why is this type of fraud so dangerous?

Using deception, the cybercriminals make the emails look credible and familiar. The employee doesn’t suspect it as being fake for a second. Because the scammers are leveraging the influence and authority of a top executive or CEO, this type of fraud came to be known as the CEO Fraud.

Here is a sample of an email designed to trick the targeted employee:

source image: blog.trendmicro.com

3 real-world examples of CEO Fraud

Etna Industrie, France

Etna Industrie employs 50 people and has been making industrial equipment on the outskirts of Paris for nearly 75 years. In 2016, the company became a victim of CEO Fraud.

The company’s accountant received an email from her boss, Carole Gratzmuller announcing that she was buying a company in Cyprus. The email included instructions from Carole as to where to transfer the money.

A total of $542,000 was transferred to foreign bank accounts: the banks held three of the wire transfers up, but $142,000 went through to the scammers. (Source: bbc.com)

FACC Operations GmbH, Austria

FACC Operations GmbH is an Austrian company that produces various airplane parts for companies like Airbus and Boeing.

In 2016, the company announced that it was the victim of a cyber fraud that targeted its financial accounting department.

The financial damage was at $54 million. (Source: news.softpedia.com)

Mattel, U.S.A.

Mattel, the well-known manufacturer of the Barbie doll has fallen victim to the CEO Fraud as well.

In 2016, Mattel was pushing to increase its business in China and had a new CEO at the helm. An executive in the finance department received an email from the newly appointed CEO to wire $3 million for a vendor in China. Mattel has a double-check transfer system in place that each payment must go through.

The payment checked out correctly and the executive wired the funds. Hours later she mentions the money transfer to the CEO who denies having sent such an email.

Mattel quickly asked the help of the Chinese Police which was successful in recovering the money two days later. (Source: news.com.au)

Expert’s Opinion

We talked about CEO Fraud to Mihaela Paun, Bitdefender’s Vice President of Consumer Sales and Marketing.

Here are her recommendations:

“Two major factors converge to the success of CEO fraud: the social component that prompts the employee to comply with the request under the hierarchic pressure and the amount of money that cyber-criminals can make in one shot.

This is why advanced security measures should be complemented by strong internal policies at all times. On the technology side, several aspects financial departments (or any department that works with payments) should take into account are the use of two-factor authentication mechanisms and close monitoring of internal communications impersonating executives. Spam traps can be trained to raise alerts with IT security whenever the sender’s name does not match the associated company e-mail address. E-mail coming from “typosquatted” (impersonating) domain names should be discarded immediately by the antispam filer as well.

On the human side, financial departments should implement strong payment policies. Payments should not be made in the absence of an agreement or purchase order associated with the invoice. The purchase order should clearly state the beneficiary, the maximum amount of money and the bank account number for the payments to be made to. For large amounts of money, extra approvals should be formalized and double checked offline such as calling a trusted phone number.

Security of transactions should be an ongoing effort and every employee should be trained on how to spot phishing attempts, as well as how to report such attempts to the IT department.”

How is your company protecting itself from CEO fraud?

Ad Fraud Cut by 83 Percent in TAG Certified Distribution Channels

A new study from The 614 Group has analyzed the impact of the Trustworthy Accountability Group (TAG)’s efforts on addressing fraud in the digital advertising supply chain.

Moreover, the level of fraud was lower by more than 83 percent compared to the industry average. The study looked at more than 6.5 billion display and video impressions in campaigns run through TAG Certified channels by three major media agencies: GroupM, IPG/Mediabrands and Horizon Media. Analyses by verification technology providers have found the levels of Invalid Traffic (IVT) in digital advertising average 8.83 percent for display inventory in North America (and rise to 12.03 percent when video inventory is included).

The Trustworthy Accountability Group (TAG) is the leading global certification program fighting criminal activity and increasing trust in the digital advertising industry. Created by the industry’s top trade organizations, TAG’s mission is to eliminate fraudulent traffic, combat malware, prevent Internet piracy, and promote greater transparency in digital advertising. TAG advances those initiatives by bringing companies across the digital advertising supply chain together to set the highest standards. TAG is the first and only registered Information Sharing and Analysis Organization (ISAO) for the digital advertising industry.

Source: Campaign UK

The 614 Group examined comparable rates of fraud for campaigns run through TAG Certified Channels in which multiple entities involved in the transaction – such as the media agency, buy-side platform, sell-side platform and/or publisher – had achieved the TAG Certified Against Fraud Seal.

“This study validates TAG’s approach and sets a clear path for marketers that want to protect their brands and ad spend from fraud,” said Mike Zaneis, President and CEO of TAG.“Fraud thrives in the dark crevices of the supply chain, so we knew that we had to get the legitimate participants in the supply chain to adopt the same high standards for this effort to be successful. When the industry links its arms and stands together, there is no place left for the criminals to hide.”

“The 614 Group have been leaders in promoting brand safety best practices and supporting the creation of standards and guidelines. Fraud has proven to be one of the most intractable issues in this area over the years,” said Rob Rasko, Managing Partner of The 614 Group. “We are pleased to release this groundbreaking research on the impact of TAG’s efforts to address the IVT challenge, and we believe the quantitative data combined with the timely first-hand analysis from the agency leaders who deal with fraud on a daily basis offer compelling insights on the impact of the TAG program.”

“The results of this study are extraordinary and demonstrate that the ‘war on fraud’ is winnable,” said Bob Liodice, CEO of the Association of National Advertisers. “Marketers must recognize that fraud, piracy and malware rob brands of their business building power. By joining and working with TAG — and its demonstrated process for success — brands can energize their marketing investments and elevate their potential for growth. I encourage all marketers and the entire community to engage this effective fraud fighting institution.”

“Fighting digital ad fraud is a centerpiece of the IAB’s and IAB Tech Lab’s work, and we are delighted that those efforts are paying dividends,” said Randall Rothenberg, President and CEO, Interactive Advertising Bureau. “By making TAG Registration mandatory for all IAB members and collaborating with TAG on our technical standards, we are assuring that the highest anti-fraud standards are extended across the industry, so advertisers will know that their money is well spent.”

BRAND MINDS Newsletter

CHECK ALL

TERMS AND CONDITIONS

You agree to our terms and conditions.

JOIN THE COMMUNITY

OK, I agree to receive the BRAND MINDS newsletter with information from industry leaders and business experts. The content is related to ultimate technologies, marketing trends and updates about BRAND MINDS events.

HAVE THE BEST EXPERIENCES

OK, I agree to receive the latest info and offers for BRAND MINDS events when I am surfing on other websites as well. For this, I agree to allow cookies and other online digital marketing tools to personalize site content, social media features and to analyze the traffic by sharing my navigation status with BRAND MINDS SRL advertising and social media partners such as, but not limited to, Meta, LinkedIn and Google.

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
gdpr_status	6 months 2 days	This cookie is set by the provider Media.net. This cookie is used to check the status whether the user has accepted the cookie consent box. It also helps in not showing the cookie consent box upon re-entry to the website.
JSESSIONID	session	Used by sites written in JSP. General purpose platform session cookies that are used to maintain users' state across page requests.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
bcookie	2 years	This cookie is set by linkedIn. The purpose of the cookie is to enable LinkedIn functionalities on the page.
lang	session	This cookie is used to store the language preferences of a user to serve up content in that stored language the next time user visit the website.
language		This cookie is used to store the language preference of the user.
lidc	1 day	This cookie is set by LinkedIn and used for routing.

Cookie	Duration	Description
_gat	1 minute	This cookies is installed by Google Universal Analytics to throttle the request rate to limit the colllection of data on high traffic sites.
sib_cuid	6 months	This cookie is set by the provider Purechat. This cookie is used to send data to purechat.com. It helps to connect visitors to the reservation team and to track visitors to stay on portal.

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_gtag_UA_73609929_1	1 minute	This cookie is set by Google and is used to distinguish users.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.
_hjAbsoluteSessionInProgress	30 minutes	No description available.
_hjFirstSeen	30 minutes	This is set by Hotjar to identify a new user’s first session. It stores a true/false value, indicating whether this was the first time Hotjar saw this user. It is used by Recording filters to identify new user sessions.
_hjid	1 year	This cookie is set by Hotjar. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the random user ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID.
_hjIncludedInPageviewSample	2 minutes	No description available.
CONSENT	16 years 5 months 13 days 4 hours 1 minute	These cookies are set via embedded youtube-videos. They register anonymous statistical data on for example how many times the video is displayed and what settings are used for playback.No sensitive data is collected unless you log in to your google account, in that case your choices are linked with your account, for example if you click “like” on a video.
UID	2 years	No description available.
vuid	2 years	This domain of this cookie is owned by Vimeo. This cookie is used by vimeo to collect tracking information. It sets a unique ID to embed videos to the website.

Cookie	Duration	Description
_fbp	3 months	This cookie is set by Facebook to deliver advertisement when they are on Facebook or a digital platform powered by Facebook advertising after visiting this website.
bscookie	2 years	This cookie is a browser ID cookie set by Linked share Buttons and ad tags.
fr	3 months	The cookie is set by Facebook to show relevant advertisments to the users and measure and improve the advertisements. The cookie also tracks the behavior of the user across the web on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
uuid	6 months	To optimize ad relevance by collecting visitor data from multiple websites such as what pages have been loaded.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.
YSC	session	This cookies is set by Youtube and is used to track the views of embedded videos.

What is CEO Fraud?

Keep reading to find out what CEO Fraud is, discover 3 real-world examples and what to do to protect your company.

What is CEO Fraud?

How does CEO Fraud work?

Why is this type of fraud so dangerous?

3 real-world examples of CEO Fraud

Etna Industrie, France

FACC Operations GmbH, Austria

Mattel, U.S.A.

Expert’s Opinion

Ad Fraud Cut by 83 Percent in TAG Certified Distribution Channels

BRAND MINDS Newsletter