Home / Companies / Crowdstrike / Blog / Post Details
Content Deep Dive

eCriminals Share Ways to Impersonate School Staff to Steal Paychecks

Blog post from Crowdstrike

Post Details
Company
Date Published
Author
-
Word Count
1,976
Company Posts That Month
Language
English
Hacker News Points
-
Post removed?
No
Summary

CrowdStrike has observed a notable rise in eCrime activities, particularly payroll business email compromise (BEC) that targets U.S.-based private schools. This simpler fraud technique involves threat actors impersonating school employees to alter direct deposit details to accounts they control, posing a significant risk to academic institutions as the school year begins. Threat actors use various online platforms, including Telegram channels and forums, to share detailed tutorials on executing payroll BEC campaigns, emphasizing the importance of obtaining staff directories and impersonating employees through spoofed email addresses. To mitigate these risks, organizations are advised to scrutinize "Reply-To" headers in emails, use spam filters to detect common BEC phrases, and employ separate platforms for payroll operations to reduce vulnerability to such fraud.

Trends Found in this Post
Trend Post Mentions Total Month Mentions Posts Companies MoM
AI Agents 2 2,394 1,321 1 -
Zero Trust 1 1,843 1,331 3 +61333%
Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.