Nigerian hackers swindle millions of dollars from unemployment systems

Seven states impacted by the organization’s exploits

From shutting down entire communities to being the catalyst of an impending recession, the impact of the coronavirus pandemic is sure to have a longlasting impact worldwide. Unfortunately, since the onset of the virus, hackers have looked to capitalize on it in many ways. Just this week, Agari identified a Nigerian cybercriminal organization that has been committing mass unemployment fraud across a number of states in the U.S.

According to reports, the Nigerian cybercrime group, better known as Scattered Canary, has been successful in stealing millions of dollars from U.S. employment systems. By using Gmail dot accounts, the group was able to mass-create accounts, which allowed them to create dozens of accounts on state unemployment websites and the IRS website geared towards processing CARES Act payments. States currently impacted by the group’s nefarious endeavors include Florida, Massachusetts, North Carolina, Oklahoma, Rhode Island, Washington and Wyoming. 

“As a result of our analysis, we have identified 259 different variations of a single email address used by Scattered Canary to create accounts on state and federal websites to carry out these fraudulent activities,” Patrick Peterson, Agari’s founder and CEO, shared in the report.

Thus far, Agari’s research has also identified multiple examples of fraudulent activity attributable to the Nigerian cybercrime group. Between April 15 and 29, Scattered Canary filed 82 fraudulent claims for CARES Act Economic Impact Payments. Since April 29, Scattered Canary has filed an additional 174 fraudulent claims for unemployment in the state of Washington. 

Between May 15 and 16, Scattered Canary was also able to file 17 fraudulent claims for unemployment in Massachusetts. All the claims were accepted, though it’s unclear how much Scattered Canary received as a result.

To receive funds related to fraudulent claims, Scattered Canary has been using Green Dot prepaid cards. So far, Agari has identified 47 Green Dot accounts Scattered Canary used to receive fraudulent unemployment payments.

The Nigerian group is no stranger to fraudulent activity. According to Agari, Scattered Canary has a 10+ year history in fraudulent activity and has been involved in a range of scams, including unemployment, social security, disaster relief and student-aid-related fraud.

Featured Resources

2021 Thales access management index: Global edition

The challenges of trusted access in a cloud-first world

Free download

Transforming higher education for the digital era

The future is yours

Free download

Building a cloud-native, hybrid-multi cloud infrastructure

Get ready for hybrid-multi cloud databases, AI, and machine learning workloads

Free download

The next biggest shopping destination is the cloud

Know why retail businesses must move to the cloud

Free Download

Recommended

MirrorBlast phishing campaign targets financial companies
phishing

MirrorBlast phishing campaign targets financial companies

15 Oct 2021
Kaspersky exposes MysterySnail zero-day exploit in Windows
zero-day exploit

Kaspersky exposes MysterySnail zero-day exploit in Windows

13 Oct 2021
Supply chain breaches impacted 97% of firms in the past year
supply chain management (SCM)

Supply chain breaches impacted 97% of firms in the past year

12 Oct 2021
The 4 most notorious hackers
hacking

The 4 most notorious hackers

12 Oct 2021

Most Popular

Best Linux distros 2021
operating systems

Best Linux distros 2021

11 Oct 2021
Apple MacBook Pro 15in vs Dell XPS 15: Clash of the titans
Laptops

Apple MacBook Pro 15in vs Dell XPS 15: Clash of the titans

11 Oct 2021
Veritas Backup Exec 21.3 review: Covers every angle
backup software

Veritas Backup Exec 21.3 review: Covers every angle

14 Oct 2021