Corvus: Fraudulent fund transfer claims reach all-time high
Ransomware attacks may pack the biggest financial punch, but fraudulent fund transfers are an often underestimated foe of cybersecurity.
Ransomware is a well-known scourge in the cyber world, with these claims averaging $256,000 each. Those big, scary dollar amounts grab headlines, but the Risk Insights Index from Corvus reveals one of the most significant drivers of cybercrime is actually fraudulent fund transfer (FFT), which comprised 36% of the company’s cyber claims in the third quarter of 2022. While these claims typically aren’t as financially destructive as ransomware attacks individually, they still pack a punch at an average of $90,000 in losses for each attack.
An FFT occurs when an actor utilizes tactics to gain the trust of an employee or company and convince them to send money to a bank account the fraudster controls. FFTs also make up 70% of all business email compromise (BEC) claims, in which an attacker is able to gain an employee’s email login credentials. Once a cybercriminal has gained access to an employee’s inbox, it makes it much easier for them to make themselves appear legitimate in order to complete FFTs. Corvus also reported a rise of around 10% in BECs, ending with them representing 45% of claims in the first half of 2022.
The threat of FFTs has been consistent over time, with Corvus reporting the percentage of these claims has not dipped below 25% over the last six quarters.
“Global cybercrime is growing more complex by the day, presenting security leaders with new challenges,” Jason Rebholz, Chief Information Security Officer at Corvus Insurance, said in a release accompanying the report. “While ransomware continues to be a dominant risk, we are seeing tactics change, including the rise of other forms of extortion as well as funds transfer fraud. The findings from our report serve as a reminder to all security leaders that cybersecurity is fluid and attackers will shift their methods, even revisiting old tactics, so long as they continue to reap financial benefits.”
A full copy of the Corvus Risk Insights Index can be found here.