Breaking News :

OIA Announces Social Investment Policy, Launches “Qimam” Platform

POPS Supervisory Committee Holds First Meeting in 2024

Bank Muscat’s Sayyarati Auto Finance Option Comes with the Best Financing Facilities for Customers

“Ooredoo Oman Welcomes Khawla Al-Amiri as Chief People Officer, Reinforcing Commitment to Local Leadership Empowerment”

Bank Muscat Launches EAGLEs Programme: A Pioneering Leadership Engagement Across Branch Network

“Forging Tomorrow: A Global Imperative for Advanced AI Infrastructure”

“High-Paying Careers in Artificial Intelligence: Securing Your Future in the Evolving Job Market”

HM The Sultan Issues Two Royal Decrees

Unlocking New Horizons for Entrepreneurs: The Fourth Industrial Revolution

Royal Army of Oman Celebrates Passing Out of Officer Cadets, University Officers

HM The Sultan Offers Condolences on the Death of Kuwaiti Emir

HM The Sultan Gives Audience to Business People in India

HH Sayyid Theyazin Conveys HM The Sultan’s Greetings to Russian President

First Muscat Dialogue Sessions Begin

Oman and Switzerland Strengthen Bilateral Cooperation with Multiple Memoranda of Understanding

Empowering Coastal Women in Oman: “Mina” Project Unveiled

Information Minister Affirms Keenness to Strengthen Communication with International Media Institutions

“Oman’s Education and Innovation Drive: Sultan Haitham’s Vision”

UAE Space Agency launches National Space Academy to develop national cadres

HM The Sultan Presides over 8th Term Convening of Council of Oman

Selecting Topics Phase Launched of “Together we Make Progress” Forum

HM The Sultan Issues 2 Royal Decrees

Interior Minister visits Operations Chamber of Shura Council Elections

Omanis Cast Ballots for Shura Council’s 10th Term Membership

“Navigating Talent Challenges in Oman’s Telecom Sector”

“Bank Merger in Oman: A Human Resources Transformation Story”

Omantel’s 5G Excellence Recognized with “Samena Communications Award”

NHS scientist awarded £58,000 after being named ‘Paininarse’ on spreadsheet

‘Kill list’ | Mystery doc shows list of LinkedIn staff facing redundancy, days before HR announcement

HM The Sultan Receives Ambassadors’ Credentials

“Empowering Omani Women: A Message of Hope and Progress”

Mohammed bin Rashid opens GITEX GLOBAL

HH Sayyid Bilarab Chairs Meeting of Omani Startups’ Supervisory Committee

“Dhi Yazan bin Haitham Al Said Inaugurates Duqm Economic Forum “

Omani Woman: Clear Vision & Remarkable Achievements

“Strategies for Cultivating a Healthy and Productive Work Environment”

“Essential Reading for HR Professionals: 17 HR Books You Can’t Miss in 2023”

“Future-Proofing Your Career: Essential Skills for Tomorrow’s Job Market”

MAWARED annual book

Transformational Leadership: Inspiring Change and Achieving Excellence

“al sulaam Program (Episode four) with Dr. Aamal al bussaidi .”

“al sullam Program (Episode Two) with Dr. Ahmed Al-Ghusani.”

Nama Group and Omani Society for Human Resource Management (OSHRM) announce strategic partnership in Human Resources development

Saudi Oil Giant Aramco Announces $121 Billion Profit in 2023

Tender Board Signs Agreements with Karwa Motors on Government Procurement, School Bus Purchase

Najahi Business Banking from Bank Muscat: Empowering Small Businesses

His Majesty Exchanges Ramadan Greetings With Arab, Islamic Leaders

A’Rustaq Hospital Diagnoses Child with Gastric Wall Vein Bleeding

QCB Launches ‘FAWRAN’ Instant Payment Service

National Development Fund Partners with World Economic Forum

Qatar Chairs 49th Meeting of GCC Standing Committee for Combating Harmful Practices in International Trade

Saudi Arabia’s Air Connectivity Program Signs Deal with Eurowings to Enhance Air Connectivity between Saudi Arabia and the EU

HM King presented unique development model: Omani Ambassador

April 16, 2024

UK Worker Poses as Cyber Criminal, Blackmails Employer for Ransom Money

n a shocking turn of events, a UK worker has been found guilty of mimicking a cyber criminal during a ransomware attack, orchestrating a scheme to extort ransom money from his own employer. The convicted individual, employed as an IT Security Analyst at a prestigious Oxford-based company, shamelessly exploited an opportune moment when the business fell victim to a genuine cyber attack.

As the ransomware incident unfolded, the company received a demand from the cyber criminal requesting a direct payment. Seizing his advantageous position as a participant in the internal investigation, the deceptive worker accessed confidential emails and covertly altered the payment address in the criminal’s message. This astute maneuver deceived the unsuspecting boss into unwittingly transferring the funds directly to the scheming employee instead.

To further ensnare the employer, the worker meticulously crafted an email address that closely mirrored that of the original attacker. By assuming the role of an impersonator, he successfully coerced the company into complying with his illicit demands.

Initially denying any involvement, the employee eventually confessed to the heinous act and entered a guilty plea during a court hearing. The charges leveled against him carry severe penalties, with unauthorized computer access potentially resulting in a sentence of up to two years, while blackmail carries a maximum sentence of 14 years. The employee awaits his sentencing as the legal proceedings progress.

The Incident Sheds Light on Employees as a Critical Threat

The motivations behind this shocking betrayal of trust remain multifaceted. While disloyalty towards a supervisor serves as the crux of this case, it serves as a stark reminder that even the most vibrant company cultures and high employee satisfaction levels cannot fully safeguard against deceptive individuals within an organization.

This highlights the paramount importance of internal education and vigilance in maintaining cyber safety. It is crucial to establish checks and balances within the IT team to prevent any single individual from acquiring excessive authority and access. However, such precautions may prove challenging for smaller businesses with limited personnel.

Given the prevalent lack of awareness regarding cyber safety among the general populace, it is imperative to adopt simple yet effective measures to mitigate the risk of breaches. This becomes particularly significant for remote companies, where cyber criminals exploit multiple entry points to gain unauthorized access to sensitive information.

Implementing multifactor authentication, robust password policies with regular updates, deploying antivirus and malware protection, adhering to data retention policies, and conducting regular staff training on identifying suspicious emails are some of the fundamental practices that can help thwart such breaches.

Martin Lauer, founder and chief executive of tech provider The One Point, underscores the vulnerability of employees as the weakest link in an organization’s cyber security. Lauer emphasizes the need for prevention through training and awareness, highlighting email as the primary avenue through which cyber criminals exploit unsuspecting employees with phishing scams. He suggests employing software that enables the safe transmission of spoof emails, promptly alerting IT or managed service providers (MSPs) upon any user interaction. This proactive approach facilitates educating employees about potential risks and reinforces a culture of cyber resilience within the organization.

In conclusion, this disconcerting incident serves as a cautionary tale, illustrating the audacity and potential harm that can arise when an employee manipulates their position of trust. It underscores the critical importance of comprehensive cyber security measures, employee education, and organizational vigilance in mitigating the ever-evolving threats posed by cyber criminals in the digital age.

Read Previous

Urgent Implementation of Human Rights Policies Vital for Businesses

Read Next

Survey Reveals One in Five HR Practitioners Will Switch Jobs This Year

Most Popular