Coronavirus – Lessons Learned from Italy

Eli Dominitz
March 24, 2020
Read Time: min

Around the world, public health officials are analyzing the coronavirus (COVID-19) transmission in countries with earlier outbreaks in an effort to model scenarios, refine preparations, and identify mismanagement and best practices in dealing with the devastating epidemic. With Italy being a hotspot, Q6 Cyber set out to analyze recent cybercriminal and fraud activity there so as to learn what we can anticipate in other parts of the world where the epidemic is on the rise.

Fraudsters capitalized on vulnerabilities from shifts in daily life

Not surprisingly, we saw a spike in cyberattacks and fraud campaigns targeting Italian corporations and consumers. Bad actors, especially sophisticated ones, view the current epidemic as a golden opportunity and are deploying more resources toward criminal operations in Italy. Leveraging our unique access to invitation-only Dark Web and Cybercriminal Underground sources, we observed cybercriminals and fraudsters discussing the opportunities and vulnerabilities created by the seismic shift in daily life in Italy:

  • Fewer Defenders: As security and anti-fraud professionals work remotely, often with reduced access and productivity, or unable to work while caring for ill relatives or sick themselves, attackers perceive a unique window of opportunity to strike when ‘nobody is watching’.
  • Remote Work: With employees working from home and accessing sensitive systems and data, some even using personal computers, attackers do not have to contend with robust security infrastructures that protect corporate networks, making the ‘targets’ easier to compromise.
  • Digital Transactions: The lockdown is forcing people to conduct financial transactions digitally through online banking and payments, even those who may otherwise be less disposed (e.g., the elderly). Fraudsters are ferociously seizing on the increase in potential victims, especially those less savvy and less security-conscious.
  • Relaxed Controls: Experienced fraudsters expect financial and other organizations to relax anti-fraud controls to support their customers in this period of emergency, presenting the opportunity to execute fraud schemes tailored to take advantage of such letup.
  • Witting Partners: As more and more people lose their jobs and feel the financial squeeze, bad actors can more easily recruit witting partners to commit a range of cyber and financial crimes.

Stay informed during these unprecedented times.
learn more

Implications for the rest of us

With the pandemic picking up steam around the world and more countries implementing shutdowns and other restrictive measures, we expect cybercriminals and fraudsters to double down their attacks and take advantage of the same dynamics playing out in Italy. Undoubtedly, organizations must first address the well-being of their employees, customers, and other stakeholders, and ensure continuity of business operations. At the same time, to avoid mounting fraud losses and damaging cyberattacks during this vulnerable period, organizations must empower anti-fraud and security teams with the necessary resources and tools. For example, implementing robust processes and controls for remote employee access, or e-crime intelligence to proactively identify financial mules, are important initiatives that organizations should immediately consider taking.

About the Author

Eli Dominitz

Eli Dominitz is the Founder & CEO of Q6 Cyber, an e-crime intelligence company based in the USA and Israel. Through a combination of proprietary technology and human analysts, Q6 monitors the “Digital Underground" (DarkWeb, DeepWeb, malware networks and infrastructure) to collect targeted and actionable e-crime intelligence used to proactively eliminate fraud, data breaches, and other electronic crimes.

Full Bio

About Abrigo

Abrigo is a leading technology provider of compliance, credit risk, and lending solutions that community financial institutions use to manage risk and drive growth. Our software automates key processes — from anti-money laundering to fraud detection to lending solutions — empowering our customers by addressing their Enterprise Risk Management needs.

Make Big Things Happen.

 

Looking for Banker’s Toolbox? You are in the Right Place!

Banker’s Toolbox is now Abrigo, giving you a single source for all your enterprise risk management needs. Use the login button here, or the link in the top navigation, to log in to Banker’s Toolbox Community Online.

Make yourself at home!