A phishing scam results in City of Tenino, Washington losing $280,309

A phishing scam results in City of Tenino, Washington losing $280,309

https://www.govtech.com/security/washington-city-loses-280-309-to-successful-phishing-scam

Exploit: Phishing/BEC

City of Tenino, Washington: Municipality

3964497747

Risk to Business: 1.717 = Severe The City of Tenino, Washington is down $280,309 in public funds according to the Washington State Auditor’s Office after a city employee fell for a phishing message that launched a business email compromise scam. Reports say that former Clerk Treasurer John Millard fell victim to a phishing message and paid cybercriminals a boatload of money, some without city council approval. The official reportedly initiated 20 automated clearing house payments from the city’s bank account to multiple out-of-state bank accounts. News outlets are also reporting that a warning was sent out to clerks about the phishing scam immediately but that didn’t stop this disaster from happening.

img2-Three-Affiliated-Tribes-servers

Individual Impact: No specifics about any consumer/employee PII or financial data loss were available at press time.

Customers Impacted: Unknown
How It Could Affect Your Customers’ Business : BEC is the most expensive cybercrime according to the FBI, 64X more expensive than ransomware – and it usually starts with phishing.

Risk Levels:
1 - 1.5 = Extreme Risk
1.51 - 2.49 = Severe Risk
2.5 - 3 = Moderate Risk

*The risk score is calculated using a formula that considers a wide range of factors related to the assessed breach.