Nigerian hackers swindle millions of dollars from unemployment systems

Seven states impacted by the organization’s exploits

From shutting down entire communities to being the catalyst of an impending recession, the impact of the coronavirus pandemic is sure to have a longlasting impact worldwide. Unfortunately, since the onset of the virus, hackers have looked to capitalize on it in many ways. Just this week, Agari identified a Nigerian cybercriminal organization that has been committing mass unemployment fraud across a number of states in the U.S.

According to reports, the Nigerian cybercrime group, better known as Scattered Canary, has been successful in stealing millions of dollars from U.S. employment systems. By using Gmail dot accounts, the group was able to mass-create accounts, which allowed them to create dozens of accounts on state unemployment websites and the IRS website geared towards processing CARES Act payments. States currently impacted by the group’s nefarious endeavors include Florida, Massachusetts, North Carolina, Oklahoma, Rhode Island, Washington and Wyoming. 

“As a result of our analysis, we have identified 259 different variations of a single email address used by Scattered Canary to create accounts on state and federal websites to carry out these fraudulent activities,” Patrick Peterson, Agari’s founder and CEO, shared in the report.

Thus far, Agari’s research has also identified multiple examples of fraudulent activity attributable to the Nigerian cybercrime group. Between April 15 and 29, Scattered Canary filed 82 fraudulent claims for CARES Act Economic Impact Payments. Since April 29, Scattered Canary has filed an additional 174 fraudulent claims for unemployment in the state of Washington. 

Between May 15 and 16, Scattered Canary was also able to file 17 fraudulent claims for unemployment in Massachusetts. All the claims were accepted, though it’s unclear how much Scattered Canary received as a result.

To receive funds related to fraudulent claims, Scattered Canary has been using Green Dot prepaid cards. So far, Agari has identified 47 Green Dot accounts Scattered Canary used to receive fraudulent unemployment payments.

The Nigerian group is no stranger to fraudulent activity. According to Agari, Scattered Canary has a 10+ year history in fraudulent activity and has been involved in a range of scams, including unemployment, social security, disaster relief and student-aid-related fraud.

Featured Resources

Unlocking collaboration: Making software work better together

How to improve collaboration and agility with the right tech

Download now

Four steps to field service excellence

How to thrive in the experience economy

Download now

Six things a developer should know about Postgres

Why enterprises are choosing PostgreSQL

Download now

The path to CX excellence for B2B services

The four stages to thrive in the experience economy

Download now

Recommended

Russia launched over a million cyber attacks in three months
hacking

Russia launched over a million cyber attacks in three months

13 Apr 2021
Hackers leak data from dark web marketplace
cyber security

Hackers leak data from dark web marketplace

9 Apr 2021
Hackers are using fake messages to break into WhatsApp accounts
instant messaging (IM)

Hackers are using fake messages to break into WhatsApp accounts

8 Apr 2021
Hackers sell $38 million in gift cards on Russian marketplace
hacking

Hackers sell $38 million in gift cards on Russian marketplace

7 Apr 2021

Most Popular

Microsoft is submerging servers in boiling liquid to prevent Teams outages
data centres

Microsoft is submerging servers in boiling liquid to prevent Teams outages

7 Apr 2021
How to find RAM speed, size and type
Laptops

How to find RAM speed, size and type

8 Apr 2021
Hackers are using fake messages to break into WhatsApp accounts
instant messaging (IM)

Hackers are using fake messages to break into WhatsApp accounts

8 Apr 2021