Beware of Phishing Emails and Other Scams
/As an anti-fraud professional, you are familiar with all types of threats used to gain access to your organization’s or personal data. You likely stay informed of and research the latest schemes and scams, and you may even be responsible for developing training for your company. As a chapter leader, you should be just as responsible for protecting your members’ data, and you shouldn’t be surprised if you are targeted by these same fraudsters.
Recently, our Arizona Chapter received a phishing email asking one of the chapter leaders to make an electronic payment. The email stated it is from the chapter president, Don Carroll, and was sent to the training director, Anne Layne. Also mentioned in the email was Paul Updike, who is the treasurer. Anne quickly identified the email as a phishing attempt. Additionally, the sender's details clearly show it is not from a known email address for Don.
I also experienced a similar situation. I was away from my computer when I received a text message from an unknown number claiming to be ACFE President Bruce Dorris. The first message from “Bruce” didn’t seem too odd, other than I knew it wasn’t from the number I have stored for him. I thought, "He may have a second phone line, right?" I proceeded cautiously and asked what I could do without giving away any information.
However, the follow-up text message displayed all the red flags from a fake boss scam. I needed to drop everything I was doing, buy a gift card, provide him the bar code, and I would be reimbursed shortly. I quickly alerted our IT department in case any other employees received a similar text from “Bruce.”
One chapter had a fraudster create a spoof chapter website that was used to help fraud victims get their money back. The victims were not only scammed by the initial fraud, but they lost an additional $3,000 for the up-front fee to begin the investigation. The website even had pictures and names of active Certified Fraud Examiners (CFEs) as their “investigators.” The local chapter engaged with law enforcement, and eventually, the FBI successfully took down the site.
I wanted to remind you that being a chapter leader will not prevent you from receiving these threat attempts. Chapters have had their sites hacked or have fallen for various schemes costing the chapter thousands of dollars. Please stay diligent in your efforts to protect your data because the threats will continue and become even more sophisticated.