{"id":2936,"date":"2023-09-13T12:21:41","date_gmt":"2023-09-13T10:21:41","guid":{"rendered":"https:\/\/www.hwgsababa.com\/?p=2936"},"modified":"2025-10-22T11:49:11","modified_gmt":"2025-10-22T09:49:11","slug":"4-ways-to-steal-money-from-your-corporate-account","status":"publish","type":"post","link":"https:\/\/www.hwgsababa.com\/en\/4-ways-to-steal-money-from-your-corporate-account\/","title":{"rendered":"4 ways to steal money from your corporate account"},"content":{"rendered":"
[vc_row el_class=”margin_top_30″][vc_column][vc_column_text el_class=”paragrafo testo_articolo”]\n

Robbers with guns and masks carrying cash out of an office window are heroes of old movies. Modern criminals conduct remote cyber-attacks to steal money. It can take them just 15 minutes to transfer all the money from a corporate account \u2013 with the help of careless employees. Here are 4 ways to steal money from your corporate account.<\/h3>\n
    \n
  1. \n

    Trojan in an email attachment<\/strong><\/span><\/h3>\n<\/li>\n<\/ol>\n

    It is a due day to pay contractors, but the bank refuses to make the payment, as the corporate account is empty. It is strange, as there was enough money the day before when the accountant paid the office rent. The investigation points out that someone changed the wire transfer details, and all the money went to an unknown account. By the moment the company discovered it, the scammers have already cashed the money and disappeared. The bank cannot help.<\/p>\n

    It turned out that two weeks before the accountant opened an attachment sent from an unknown address, stating the company had a debt. What seemed an attachment was a link, that once clicked, downloaded a malware. When the Trojan dropped on the computer, cybercriminals replaced the wire transfer details, and all the money flowed to their account.<\/p>\n

    How to protect yourself: install antivirus on every computer and regularly update it. Check payment information only through the bank website or software, in case of doubts contact your counterparties by phone. Employees should know how to check links in emails. Never use someone else\u2019s computer to make financial transactions.<\/p>\n

      \n
    1. \n

      Ransomware pretending to be a Federal Tax Service warning<\/strong><\/span><\/h3>\n<\/li>\n<\/ol>\n

      Here is one more scenario out of the 4 ways to steal money from your corporate account. Employees have problems with issuing invoices and opening contracts. Files on the shared network drive are also unavailable.<\/p>\n

      One of the employees received an email from the Federal Tax Service to his personal mailbox and forwarded it to HR to check if everything was fine. The attached document had a malicious macro and downloaded malware when it was opened. The malware encrypted all the files and demanded ransom. The HR manager had access to all network drives, so all the documents across the corporate network got encrypted.<\/p>\n

      How to protect yourself: restrict macros execution in office documents. Employees should know how to safely open office documents from unknown recipients.<\/p>\n

        \n
      1. \n

        USB flash drive left in the office<\/strong><\/span><\/h3>\n<\/li>\n<\/ol>\n

        A secretary found a flash drive in the office and thought that one of the clients or employees left it. She decided to see what was on it, inserted it into her laptop, but the flash drive was empty. A week later, all the money disappeared from the company\u2019s account. Nobody understood how this could happen.<\/p>\n

        In fact, cyber criminals were prepared to steal money. They made a special flash drive with a re-programmed firmware and left it in the office. When connected, the flash drive injected commands to download a Trojan. Cybercriminals got remote access to the secretary\u2019s computer, and then to the entire corporate network. In a few days they gained access to the accountant\u2019s computer, changed the wire transfer details, and stole the money.<\/p>\n

        How to protect yourself: disable USB ports on computers where they are not necessary. Employees should understand why it is dangerous to insert \u201cnobody\u2019s\u201d<\/span> <\/em>flash drives into their computers.<\/p>\n

          \n
        1. \n

          Infected document from a forum<\/strong><\/span><\/h3>\n<\/li>\n<\/ol>\n

          Here is the final tactic in the 4 ways to steal money from your corporate account: exploiting common user behavior. A lawyer searched the Internet for a power of attorney template. He found one on a popular forum, downloaded and opened it in Word. Two days later, all the money disappeared from the company\u2019s account. Again, no one understood how this happened.<\/p>\n

          In fact, the infected document was created and left on the forum by scammers. The script in the document could exploit a vulnerability in an outdated version of Word.<\/p>\n

          Nobody updated the lawyer\u2019s computer for almost two years, and a malware could open a backdoor on it. The cybercriminal managed to hack the central server and issue a wire transfer from that machine.<\/p>\n

          How to protect yourself: regularly update all programs including operating system, browsers, and office applications.<\/p>\n

          Cyber safety tips to protect against 4 ways to steal money from your corporate account<\/strong><\/span><\/h3>\n

          Employees unaware of cybersecurity fundamentals were the root cause of the incidents described in these 4 ways to steal money from your corporate account<\/strong>. Beyond simply installing and configuring antivirus software on all workstations, the key to preventing most financial cyber threats lies in upskilling your team. Empowering employees with cybersecurity awareness is one of the most effective defenses against attacks targeting your company\u2019s funds.<\/p>\n