Welcome
Summary
Course
Exam
Certificate
Library
News
Verify
Support
My Account

Profiled Partners

  • Be Cyber Aware At Sea
    A Global Maritime & Offshore Initiative.
  • CSO Alliance
    The World's First Global Members Alliance of Maritime Company Security Officers (CSO)
  • Navarino
    The Maritime Industry's Most Advanced Communications & Connectivity Company
  • Be Cyber Aware at Sea
    Start the Course now!
 

 
 

Bunker company victim of $1 million 'phishing' scam

Asket.co.uk, June 2017 
June 16th 2017
Asket.co.uk, June 2017
It is a mistake to consider cyber crime as a 'round the corner' threat; the risk is not just speculative but real and crimes are being perpetrated NOW, as this report from a Malaysian bunker company makes clear. As reported by ASKET (independent security brokerage); read the online report here.

A bunker company in Malaysia claims it has been the victim of a phishing scam.
 
The owner of the company has told police that it has been defrauded of RM4.5 million (US$ 1 million).
 
The Malaysian National News Agency (BERNAMA) quoted the police chief in the northwestern Malaysian state of Kedah as saying the company made two reports to the police, one on June 8 and another two days later on June 10.
 
It claimed it had been deceived into making two transactions to a bank in Greensboro in the United States on May 31 and June 2.
 
“We believe [a] spam email was sent to the company by an international syndicate, which set up an email account that is similar to the Singaporean company where it gets its oil supply from,” the police chief, Datuk Asri Yusoff, was quoted as telling a news conference.
 
“The complainant only realised he had been cheated after the real supplier contacted him for payment."
Assessment and Analysis
 
Malaysian police believe Spyware was embedded in the victim's computer allowing the perpetrators of the fraud to read email exchanges between the bunker company and its fuel supplier.
 
“After obtaining the information between the two companies, a [crime] syndicate member would create a fake email masquerading as the supplier to invoice the victim for payment into a bank account," said the police spokesman.
 
He urged companies to check with their counterparties before making payments to accounts that differed from the usual number.
 
He said police were still investigating the incident and would cooperate with the International Police Organisation (INTERPOL).