The City Council of Vitoria reported some frauds in the payment of several invoices after one of the supplier companies fell victim of identity fraud between March and June.
This scam was carried out via e-mail, providing fraudulent bank certificates to reference future payments of the new invoices.
With this information and the sending of other messages, the City Council made at different times the payment of such invoices until realizing the deception and proceeding, finally, to the modification of the reference bank account.
TPRM report: https://scoringcyber.rankiteo.com/company/city-of-victoria-bc
"id": "cit2254161122",
"linkid": "city-of-victoria-bc",
"type": "Cyber Attack",
"date": "07/2022",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"{'affected_entities': [{'industry': 'Public Sector',
'location': 'Vitoria',
'name': 'City Council of Vitoria',
'type': 'Government'}],
'attack_vector': 'E-mail',
'description': 'The City Council of Vitoria reported some frauds in the '
'payment of several invoices after one of the supplier '
'companies fell victim of identity fraud between March and '
'June. This scam was carried out via e-mail, providing '
'fraudulent bank certificates to reference future payments of '
'the new invoices. With this information and the sending of '
'other messages, the City Council made at different times the '
'payment of such invoices until realizing the deception and '
'proceeding, finally, to the modification of the reference '
'bank account.',
'initial_access_broker': {'entry_point': 'E-mail'},
'motivation': 'Financial Gain',
'response': {'recovery_measures': 'Modification of the reference bank '
'account'},
'title': 'Fraudulent Invoice Payments due to Identity Fraud',
'type': 'Identity Fraud',
'vulnerability_exploited': 'Trust in fraudulent bank certificates'}