Action Fraud has warned of scams which register domains which look similar to UK Universities, attempting to trick supply companies out of vast sums of cash – up to £350,000, reportedly.
Andy Norton, Director of Threat Intelligence at Lastline:
“This is a pretty low tech attack where the criminal sets up lookalike domains to the University, the premise is similar to a Business Email Compromise attack, except that, impersonation not compromise has taken place. The best defence for organisations Is to have robust policies and procedures that ensure a second pair of eyes validates business transactions and the shipment of goods, services or payment.”