FBI Releases Public Service Announcement on Payroll Diversion Threat
NJCCIC Alert
Original Release Date: 2018-09-27
On September 18, 2018, the FBI released a Public Service Announcement (PSA) on the use of social engineering by cybercriminals in order to conduct payroll diversion. The cybercriminals send phishing emails designed to collect credentials for access to employee payroll accounts. The criminals then change the payroll account’s direct deposit to an account controlled by the threat actor. To evade detection, the criminals change account settings to prevent targeted individuals from receiving alerts regarding the account changes. This tactic is used to target individuals across all sectors; however, education, healthcare, and commercial airway transportation have been the most affected.
The NJCCIC recommends reviewing the FBI PSA and employing the recommendations provided to defend against this threat.
Featured Content
- Disaster Relief and Tragedy-Related Scams>
- Flaw in Cosmo DB Could Allow Access to Databases>
- Threat Actors Use Messaging Service as Phishing Lure>
- Back-to-School Cybersecurity>
- Patch Now: Active Exploitation of Microsoft Exchange ProxyShell Vulnerabilities >
- T-Mobile Breach>
- Test Your Cybersecurity Knowledge - Take Our Cyber Quiz Today>
The NJCCIC is a component organization within the New Jersey Office of Homeland Security and Preparedness. We are the State's one-stop-shop for cyber threat analysis, incident reporting, and information sharing and are committed to making New Jersey more resilient to cyber threats by spreading awareness and promoting the adoption of best practices.
View our Privacy Policy here.
View our Site Index here.