Attacks/Breaches

8/20/2018
04:10 PM
50%
50%

Ohio Man Sentenced To 15 Months For BEC Scam

Olumuyiwa Adejumo and co-conspirators targeted CEOs, CFOs, and other enterprise leaders in the US with fraudulent emails.

Chief US District Judge Janet Hall last week sentenced Olumuyiwa Adejumo to 15 months in federal prison for his role in a business email compromise scheme targeting organizations in the United States. His sentence will be followed by 3 years of supervised release.

Adejumo, also known by a slew of aliases, including "Ade," "Slimwaco," "Waco," "Waco Jamon," "Hade," and "Hadey," teamed up with co-conspirator Adeyemi Odufuye and others to target CEOs, CFOs, and other corporate leaders with fraudulent emails. Their messages were crafted to appear as though they came from the legitimate email addresses of business executives.

The actors sent fake emails with the goal of having recipients send or wire money to bank accounts they controlled. Investigators found they controlled multiple email and social media accounts related to the scheme; in some cases, they sent malicious attachments to targets.

Adejumo admitted his role in the scheme caused total losses exceeding $100,000 to at least three organizations. He was ordered to pay $90,930 in restitution.

Read more details here.

Learn from the industry's most knowledgeable CISOs and IT security experts in a setting that is conducive to interaction and conversation. Early bird rate ends August 31. Click for more info

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
NathanDavidson
50%
50%
NathanDavidson,
User Rank: Apprentice
11/29/2018 | 11:16:24 PM
Scam detection
Given how many people are always trying to scam others out of their money, I'm really surprised that it isn't easier to spot who are the liars out there. I mean, it just takes a little bit of verification and fact checking to realise that something sounds dodgy right? I only pity the old people whose hearts are too soft that end up getting ensnared in this trickery.
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
8/21/2018 | 3:49:13 PM
Re: Should be 15 months
Good catch! We will correct the headline. Thanks. -- The Editors at Dark Reading
revlee
100%
0%
revlee,
User Rank: Apprentice
8/21/2018 | 3:13:29 PM
Should be 15 months
https://www.justice.gov/usao-ct/pr/ohio-resident-sentenced-15-months-federal-prison-role-business-e-mail-compromise-scheme
Microsoft, Mastercard Aim to Change Identity Management
Kelly Sheridan, Staff Editor, Dark Reading,  12/3/2018
Windows 10 Security Questions Prove Easy for Attackers to Exploit
Kelly Sheridan, Staff Editor, Dark Reading,  12/5/2018
Starwood Breach Reaction Focuses on 4-Year Dwell
Curtis Franklin Jr., Senior Editor at Dark Reading,  12/5/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: I guess this answers the question: who's watching the watchers?
Current Issue
10 Best Practices That Could Reshape Your IT Security Department
This Dark Reading Tech Digest, explores ten best practices that could reshape IT security departments.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-19653
PUBLISHED: 2018-12-09
HashiCorp Consul 0.5.1 through 1.4.0 can use cleartext agent-to-agent RPC communication because the verify_outgoing setting is improperly documented. NOTE: the vendor has provided reconfiguration steps that do not require a software upgrade.
CVE-2018-19982
PUBLISHED: 2018-12-09
An issue was discovered on KT MC01507L Z-Wave S0 devices. It occurs because HPKP is not implemented. The communication architecture is APP > Server > Controller (HUB) > Node (products which are controlled by HUB). The prerequisite is that the attacker is on the same network as the target HU...
CVE-2018-19983
PUBLISHED: 2018-12-09
An issue was discovered on Sigma Design Z-Wave S0 through S2 devices. An attacker first prepares a Z-Wave frame-transmission program (e.g., Z-Wave PC Controller, OpenZWave, CC1110, etc.). Next, the attacker conducts a DoS attack against the Z-Wave S0 Security version product by continuously sending ...
CVE-2018-19980
PUBLISHED: 2018-12-08
Anker Nebula Capsule Pro NBUI_M1_V2.1.9 devices allow attackers to cause a denial of service (reboot of the underlying Android 7.1.2 operating system) via a crafted application that sends data to WifiService.
CVE-2018-19961
PUBLISHED: 2018-12-08
An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because TLB flushes do not always occur after IOMMU mapping changes.