Home Real-life Cyberattacks Cases

Real-life Cyberattacks Cases

Fraud in company due to remote hiring.

A company was defrauded of thousands of pounds due to a remote hiring incident. The company hired a foreign individual who claimed to have studied in Portugal and was residing in the country, providing him with all the technical materials and resources necessary for his role. Weeks later, the client for whom the individual was responsible contacted the company as they had been waiting to receive responses for some time and were suspicious of the unexplained absence. Consequently, after several unsuccessful attempts to contact him, the company sent someone to the address of the employee and discovered that he had never lived or studied where he claimed.

Upon uncovering the fraud, the company confronted the individual, who demanded a ransom of thousands of pounds in exchange for all the confidential information, source codes, and restricted access to the company that he threatened to share.

arrow icon Source: confidential.

What prevention measures can be taken to avoid these situations:

We are in a period where remote working predominates and becomes increasingly commonplace. As organisations implement remote work and all related aspects, cyber threats that can cause irreparable damage are on the rise.

Both at an organisational and personal level, it is essential to monitor the risks and trends associated with cybersecurity. It is necessary to understand that the convenience of remote work is not always the safest method of operation. In this case, several prevention measures could have been adopted, such as:

Confirmation of the person's identity

Since the hiring process was conducted remotely, the first step would be to confirm the person's identity. Identity confirmation could be done by verifying the documents presented, as they were all found to be false. In this case, the situation could have been avoided upon discovering the documents were forged.

Residence verification

The next step would be to verify the residence of the hired individual since all materials would be sent to that address. One way to verify someone's residence is by sending a letter with a PIN and asking the person to confirm the PIN, thereby confirming that the person lives at that location.

Detailed interviews and reference checks

Conducting multiple rounds of interviews, including video calls, would have been another crucial step to ensure the legitimacy of the candidate and assess the consistency of their responses. To obtain absolute confirmation, the company could have further verified the professional and academic references provided by the candidate, directly contacting previous employers to confirm their experience and qualifications.

Utilisation of background checking services

When hiring remotely, background certification becomes even more necessary. Specialised services could have been employed to conduct checks on criminal, financial, and academic backgrounds, as these services help identify any discrepancies or forgeries in the documents provided by the candidate.

Implementation of gradual and monitored access

Lastly, it's important to emphasise the significance of trusting employees. In this case, access to confidential information and data was granted very rapidly and immediately, making it crucial to initially monitor the activities of new hires to identify any suspicious behaviour or deviation from established security norms. Access can be gradually expanded based on performance and established trust.

During a remote hiring process, preventive measures are even more crucial and beneficial to organisations. Confirming identity through document verification and residence checks ensures the authenticity of candidates, preventing adverse situations from the outset. Conducting detailed interviews and reference checks ensures the legitimacy of the candidate and the credibility of their information, while the use of background checking services adds an extra layer of security, identifying potential flaws or suspicious details in the documents provided. Implementation of gradual and monitored access allows for a safer integration of new hires and ensures a lower risk of fraud.

Cybersecurity newsletter

Do you want to receive our newsletter?

Subscribe here

Contact us.

Headquarters

Edifício Atrium Saldanha
Praça Duque de Saldanha, nº 1, 2º andar
1050-094, Lisboa | Portugal
T: +351 21 33 03 740
E: info@integrity.pt

And we are present in 18 more countries across EMEA.
world map
 




Cookie Consent X

Devoteam Cyber Trust S.A. uses cookies for analytical and more personalized information presentation purposes, based on your browsing habits and profile. For more detailed information, see our Cookie Policy.