Email Phishing Nets $10M from Grocery Store
I know that you’re a smart person. If you receive an email from PayPal or Bank of America, telling you they need you to verify your login details, you laugh, then hit delete. Right?
Not everyone is as smart as you, and in fact, there’s one person in particular that’s down about $10 million.
Techdirt is reporting an employee of Supervalu received email requests that appeared to be from two important suppliers; American Greetings and Frito-Lay. Both emails claimed that their bank account details had changed and that Supervalu would need to send funds to the new accounts. I’ll let Techdirt take it from here:
Someone at Supervalu followed the instructions, leading approximately $10 million to be deposited into the two accounts over a period of about 4 days. At this point, someone from Supervalu figured out there was a problem and alerted the authorities, who were then able to recover most of the money before the scammers withdrew it. However, it appears that no one has yet figured out who opened the accounts, though Supervalu has filed a lawsuit in order to try to get that information.
Do you know who’s responding to emails at your company? Maybe you should conduct your own immediate test. Send "Brian" in AP an email from your secret AOL account–you know the one I’m talking about–and see if he takes the bait. Better you find out now, than from a Thank You card from some guy in Nigeria!