[CoIT-Security] Cyber Advisory: Fraudulent Direct Deposit Modifications Attempted on Employees of Higher Education Entities (TLP: GREEN)

[CoIT Security]

Cyber Advisory from the FBI:  TLP GREEN

The Human Resources department of universities are being sent, via email, fraudulent direct deposit requests. In doing so, fraudsters impersonate a university employee via email, and attempt to change the employee's direct deposit bank account information to a bank account controlled by the fraudster. Please notify your HR departments so they may be on the alert for potentially fraudulent direct deposit modification requests via email.

Please see the attached FBI Private Industry Notification, Number 180803-001, "Cybercriminals Utilize Social Engineering Techniques to Obtain Employee Credentials to Conduct Payroll Diversion.”

If your institution has been targeted in this manner, please go to www.ic3.gov<http://www.ic3.gov> to report the incident.

CK

Chris Kosciuk
Information Security
Oklahoma State Regents for Higher Education / OneNet
655 Research Parkway
Suite 150
Oklahoma City, OK  73104
o:405 225.9440
c:405.204.8642
ckosciuk at osrhe.edu<mailto:ckosciuk at osrhe.edu>


-------------- next part --------------
A non-text attachment was scrubbed...
Name: PIN-20180803-001[1].pdf
Type: application/pdf
Size: 595325 bytes
Desc: PIN-20180803-001[1].pdf
URL: <http://lists.onenet.net/pipermail/coit-security/attachments/20180906/c87c7ad9/attachment-0001.pdf>