Shiawassee County apparently was the victim of a phishing scam.
The official resigned after being tricked into wiring $50,000 to an overseas bank account.
She was replying to an email from another county official about paying a bill.
TPRM report: https://scoringcyber.rankiteo.com/company/county-of-shiawassee
"id": "cou2241181122",
"linkid": "county-of-shiawassee",
"type": "Breach",
"date": "06/2018",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Public Administration',
'location': 'Shiawassee County, Michigan',
'name': 'Shiawassee County',
'type': 'Government'}],
'attack_vector': 'Phishing Email',
'description': 'Shiawassee County was the victim of a phishing scam where an '
'official was tricked into wiring $50,000 to an overseas bank '
'account.',
'impact': {'financial_loss': '$50,000'},
'initial_access_broker': {'entry_point': 'Phishing Email'},
'lessons_learned': 'Employees should be trained to recognize and verify the '
'authenticity of financial requests, especially those '
'involving large sums of money.',
'motivation': 'Financial Gain',
'post_incident_analysis': {'corrective_actions': 'Implement stricter '
'verification processes and '
'regular training on '
'identifying phishing '
'attempts.',
'root_causes': 'Lack of verification for financial '
'requests'},
'recommendations': 'Implement stricter verification processes for financial '
'transactions and conduct regular training on identifying '
'phishing attempts.',
'title': 'Phishing Scam at Shiawassee County',
'type': 'Phishing',
'vulnerability_exploited': 'Human Error'}