Do you or a client work in an industry where wire transfers are common? Think real estate (commercial or residential), law, finance, architecture, construction, or manufacturing, to name a few. If you do, you need to take care EVERY time you are involved in (either sending or receiving) a money transfer via wire.
Yesterday, an Ashton client almost suffered a $130,000 mistake. They called our help desk in the midst of a 45 minute period, late in the business day, when one of their principals was receiving more than 100 spam emails every ten minutes. Think about that; in the course of 45 minutes, one person received over 600 spam emails, completely clogging their inbox, and making it hard for them to find legitimate emails.
Our natural first course of action was to check the spam filter and trace the emails back to their senders. Unfortunately, all of the emails were coming from legitimate (and unique) Office 365 IP addresses, meaning that our only recourse would’ve been to completely lock the filter, meaning that no emails would get through. By resetting the user’s Outlook password, however, the spam stopped. Temporarily. Seemingly, somebody had gotten access to our end user’s credentials. As multi-factor authentication was in place, there was no concern that the bad actor had taken over control of our user’s email account itself, but a mailbox hijacked for relaying purposes is still an issue.