One  action  which  could  have  been  taken  to  derail  this  fraudulent  activity  would  have  been
               simple  communication.  After  the  demanding  emails  being  received  notifying  the  person  to
               change  the  bank  routing  number  were  received,  a  simple  phone  call  by  the  University  staff
               member to the vendor would have ceased this.

               Having a bank routing number change is not a normally occurring event. This generally is an
               anomaly, which may warrant a simple follow up act. Although the regular training, email alerts,
               and other cybersecurity activities do not guaranty this will be found, it certainly is a help and
               diminishes  the  pool  of  potential  people  that  may  be  successful  with.  As  a  lesson,  training  is
               beneficial, however it is still the user that makes the choice to click. If the user has even a not
               significant level of concern, a simple phone call should be made.



               About the Author
               DRP is a Cybersecurity Lab Engineer focused on securing the world for the users one module
               at a time. DRP’s interests include the intersection AI & ML and automotive cybersecurity.




































                   60    Cyber Defense eMagazine – November 2017 Edition
                         Copyright © 2017, Cyber Defense Magazine,  All rights reserved worldwide.