THE Civil Guard reported this Saturday, in a press release, that as part of its fight against emerging cybercrime arrested a person In Saint John of Alicante (Alicante), for allegedly participating in a online scam has two companies of the province of Cordoba.
La Benemérita explains that the research were initiated after the Technological Research Team (EDITE) of the Cordoba Command learned that two provincial affairsdedicated to the sale of olives, could have suffered a interference by method (“the man in the middle” [ataque a través de un intermediario]) in the communicationsboth at your level and that of the client. In this way, the cybercriminal was able to access the emails and the billing data contained therein.
The Civil Guard was also able to note that a fraudulent replacement of commercial documentsinvoices extracted via entry into the domain servers of the companies involved or via “phishing” emails – they seek to deceive people into sharing, for example, confidential data; For then go through these companies like him corporate email sender. Thus, the inmate reported the change from the usual bank account for the collection of certain bills to a new one.
Contact with the Italian judicial authorities
During the course of the operation, this state security body exposes, EDIT from the Civil Guard of Cordoba intervened two national bank accounts and managed to block A approximate total of 73,000 euros out of the 100,000 scammed.
La Benemérita also asked the judicial authorities of Italy the preventive intervention of six other bank accounts in this country, as well as the legal indictment of their owners.
Generally, it is very difficult to detect When is having an attack through a intermediate (“the man in the middle”). This is why, warns the Civil Guard, prevention is “the first measure of protection”. And Benemérita gives advice such as always access secure websites with a certificate -those that start with HTTPS, verifying that the certificate belongs to the corresponding company or entity-; protect the company’s Wi-Fi network by securing the network at least in WPA2-AES mode with strong, unguessable passwords; or update the software on our computers, including the operating system and browser.
