Posted by Tom Burt, on

St. Johns County, Florida, worked to recover over $1 million lost to hackers through a business email scam. Law enforcement was involved, with over $600,000 recovered. It started when the county thought they were talking to and paying DBE Utilities Construction, saying they changed their payment processing. But it was coming from a DOT “CO” email and not DOT “COM.” The county sent a payment of over $500,000. Documents show St. Johns County again paid the hackers for a separate payment of over $600,000. But the actual company emailed them saying they hadn’t received any payments.

Tyler Chancey, Director of Cybersecurity at Scarlett Group, provided valuable insights into the incident. “They learn the habits, they learn the account, they learn the job,” Chancey said. “Once they have all the information and knowledge they strike at the right time. They launch the attack right when a bill is being changed or someone isn’t paying attention and they do it in a way that looks legitimate.”

The scheme, initiated by deceptive emails posing as legitimate companies, highlights evolving cyber threats. Officials intensified efforts to protect taxpayer funds and explored third-party solutions to bolster security. 

Read the full article here:


Share This

Related Posts

Has your organization observed a marked increase in the difficulty of cyber insurance questionnaires in 2022? These questionnaires are generally used by insurance providers to gauge risk associated with a policy.
JACKSONVILLE, Fla. – The Scarlett Group was named to the Jacksonville Business Journal’s 2021 Fast 50 during a special ceremony held at the Jacksonville Hyatt on July 22, 2021.
In late January 2024, the City of Jacksonville Beach experienced major IT outages and disruptions to city systems and services. After weeks of investigating the "cybersecurity event", city officials announced on March 20th that they had been the…