Incident: Levitas Capital closing after fake Zoom invite sinks $16m super fund investment | news.com.au

Posted by Steven Kirby | Nov 23, 2020 | Australian InfoSec Incidents 2020, Availability, Banking and Finance, Confidentiality, Email Spear Phing and Business Email Compromise (BEC), Integrity, New South Wales, news.com.au, Privacy, Privacy Breach | 0 |

Australian Zoom Compromise, November 23 2020

Levitas Capital closing after fake Zoom invite sinks $16m super fund investment

A fake Zoom invite has forced a Sydney hedge fund to close up shop after cybercriminals found a way into their emails in September.

Source: Levitas Capital closing after fake Zoom invite sinks $16m super fund investment | news.com.au
More reports from: news.com.au.

The fraudulent invite then planted malicious software on the Levitas network, allowing the hackers to take control of email systems..

They used that access to send off fraudulent invoices to companies the fund had never previously dealt with, which Mr Fagan told the AFR showed “the manifest failure” of the checks and balances “the entire funds management industry relies on”.

At the end of September, Mr Fagan was checking to see if money from the super fund had been deposited into Levitas’ Commonwealth Bank account when he noticed more than $8 million was missing.

He began frantically making phone calls to stop transfers, managing to stop $5 million sent to a Singapore bank and $2.5 million sent to Hong Kong, but he was too late to stop an earlier transfer.

…[SK] and it get worse… read on from the original source

About The Author

Steven Kirby

I provide independent and practical consultancy services through raising awareness and fostering the energy for change that delivers improved business management of information security governance, risk and compliance.

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

More Australian News

Australia's Energy One says no proof of malicious activity
by Staff Writer on October 1, 2023
Australian software supplier Energy One said it had not uncovered any evidence of malicious activity on their customer systems after a cyber incident …
Commentary on Australia's National Cyber Security Strategy
by Craig Nielsen, vice president Asia Pacific, GitLab on September 28, 2023
GUEST OPINION: Australia’s new Cyber Security Strategy to begin building six cyber shields around the nation comes at a time when it’s more important …
Gov stalls on some privacy reforms with conditional support
by Richard Chirgwin on September 28, 2023
The government has offered "in-principle" - conditional - support for over half of the recommendations from a two-year-long review of the Privacy …
Personal data to get greater protection, but targeted ads will keep coming
by Paul Sakkal on September 27, 2023
Australians are likely to gain new rights allowing them to demand tech companies erase data, sue for privacy invasions and avoid being targeted by …
Cyber risk: Directors’ duties and implications for M&A
by Luke Dawson on September 26, 2023
On 18 September 2023, ASIC Chair Joe Longo addressed the Australian Financial Review Cyber Summit on the topic of cyber preparedness. His message was …
APVMA added to HWL Ebsworth breach list
by Richard Chirgwin on September 25, 2023
The Australian Pesticides and Veterinary Medicines Authority (APVMA) has confirmed that it was one of the federal government agencies impacted by the …
Australian Federal Police claw back $45m lost to BEC scammers
by Ry Crozier on September 25, 2023
The Australian Federal Police has claimed some success in thwarting in-progress business email compromise (BEC) scams, in cases where the incident is …
AFP saves mum and dad business from cyber criminals | Australian Federal Police
by Australian Federal Police on September 25, 2023
The AFP has returned $45 million to Australian businesses targeted by cyber criminals in the past three years. As the AFP today challenges the …
Aussies Warned Over Cyber-Security Risks After Large-Scale Hack
by The Project on September 24, 2023
Sixty-five government departments and agencies have been caught up in the country’s latest ‘large scale’ cyber-attack on legal firm HWL Ebsworth, with stark ...
Federal government rolls out plan to protect Aussies from cyber attacks | 9 News Australia
by 9 News Australia on September 24, 2023
One year on since the Optus cyber attack, Home Affairs Minister has revealed part of the Federal government’s plan to protect Australians from future breache...

Weekly Australian News and Monthly Incident Review Emails

No advertisements, marketing, sales, or unsolicited emails. Your email address is ONLY used to send the publications listed above.

Featured

Incident: Dymocks warns customers of data breach after account information leaked on dark web | ABC News (Australia)

Featured

Incident: Defence Housing Australia investigates third-party provider hack exposure | iTnews

Incident: Pizza Hut Australia leaks one million customers' details, claims ShinyHunters hacking group | Bitdefender

Incident: University of Sydney caught up in third-party data breach | iTNews

Incident: Thousands of donors to Australian charities, including Cancer Council and Canteen, have data leaked to dark web | ABC News (Australia)

Featured

Audit: NSW's local government audit found that 47% of councils did not have a cyber security plan | kirbyidau.com

Featured

Audit: Australian Senate Estimates reveals 435 Chinese-made surveillance devices found at defence sites

Audit: Western Australia Auditor General's Local Government Information Security Audit 2021-22 reports 324 control weaknesses

Audit: Western Australia Auditor General's State Government Information Systems Audit 2021-22

Audit: Queensland Audit Office's State Entities 2022 reports deficiencies in information systems

Featured

Quote: Meera Srinivasan "Home is where the Heart is ..."

Featured

Quote: Chinese Proverb "When planning for a year, plant corn. When planning..."

Quote: Elijah Shaw "In the battle of real world vs..."

Quote: Kirsten Manthorne "You are an essential ingredient in our ongoing effort to reduce Security Risk.”

Quote: H. Stanley Judd "The ultimate security is your understanding of reality."

Incident: Levitas Capital closing after fake Zoom invite sinks $16m super fund investment | news.com.au

Levitas Capital closing after fake Zoom invite sinks $16m super fund investment

A fake Zoom invite has forced a Sydney hedge fund to close up shop after cybercriminals found a way into their emails in September.