Nigerian hackers swindle millions of dollars from unemployment systems

Seven states impacted by the organization’s exploits

From shutting down entire communities to being the catalyst of an impending recession, the impact of the coronavirus pandemic is sure to have a longlasting impact worldwide. Unfortunately, since the onset of the virus, hackers have looked to capitalize on it in many ways. Just this week, Agari identified a Nigerian cybercriminal organization that has been committing mass unemployment fraud across a number of states in the U.S.

According to reports, the Nigerian cybercrime group, better known as Scattered Canary, has been successful in stealing millions of dollars from U.S. employment systems. By using Gmail dot accounts, the group was able to mass-create accounts, which allowed them to create dozens of accounts on state unemployment websites and the IRS website geared towards processing CARES Act payments. States currently impacted by the group’s nefarious endeavors include Florida, Massachusetts, North Carolina, Oklahoma, Rhode Island, Washington and Wyoming. 

“As a result of our analysis, we have identified 259 different variations of a single email address used by Scattered Canary to create accounts on state and federal websites to carry out these fraudulent activities,” Patrick Peterson, Agari’s founder and CEO, shared in the report.

Thus far, Agari’s research has also identified multiple examples of fraudulent activity attributable to the Nigerian cybercrime group. Between April 15 and 29, Scattered Canary filed 82 fraudulent claims for CARES Act Economic Impact Payments. Since April 29, Scattered Canary has filed an additional 174 fraudulent claims for unemployment in the state of Washington. 

Between May 15 and 16, Scattered Canary was also able to file 17 fraudulent claims for unemployment in Massachusetts. All the claims were accepted, though it’s unclear how much Scattered Canary received as a result.

To receive funds related to fraudulent claims, Scattered Canary has been using Green Dot prepaid cards. So far, Agari has identified 47 Green Dot accounts Scattered Canary used to receive fraudulent unemployment payments.

The Nigerian group is no stranger to fraudulent activity. According to Agari, Scattered Canary has a 10+ year history in fraudulent activity and has been involved in a range of scams, including unemployment, social security, disaster relief and student-aid-related fraud.

Featured Resources

BIOS security: The next frontier for endpoint protection

Today’s threats upend traditional security measures

Download now

The role of modern storage in a multi-cloud future

Research exploring the impact of modern storage in defining cloud success

Download now

Enterprise data protection: A four-step plan

An interactive buyers’ guide and checklist

Download now

The total economic impact of Adobe Sign

Cost savings and business benefits enabled by Adobe Sign

Download now

Recommended

The Ritz suffers data breach after hackers pose as staff
data breaches

The Ritz suffers data breach after hackers pose as staff

17 Aug 2020
Russia hacked Liam Fox's personal email to steal trade documents
phishing

Russia hacked Liam Fox's personal email to steal trade documents

4 Aug 2020
British teenager charged over Twitter hack
hacking

British teenager charged over Twitter hack

3 Aug 2020
Mid-year report says vulnerabilities up 22% in 2020
hacking

Mid-year report says vulnerabilities up 22% in 2020

30 Jul 2020

Most Popular

16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

16 Sep 2020
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

16 Sep 2020
The Xbox Series X shows how far the cloud still has to go
Cloud

The Xbox Series X shows how far the cloud still has to go

25 Sep 2020