“We’re definitely seeing that by getting just that one account - usually your email account - they use that to figure out, ‘Here’s my bank, here’s where my retirement accounts are,’” Bong said. Oftentimes, people’s account passwords, obtained in data breaches and then sold on the “dark web” to cybercriminals, are used to break into an email account and take it over without the victim knowing it. When crooks gain entry to consumer bank and retirement accounts, the point of entry more often than not is the victim’s email account, said Kevin Bong, director of cybersecurity for the accounting and consulting firm Sikich. “The scenarios continue to evolve, so while our nearly 7,000 member financial institutions are constantly developing their cyberdefenses, it's also critical for consumers to practice good cyberhygiene and be on the lookout for suspicious activity,” said Silberstein, of the Financial Services Information Sharing and Analysis Center. Still, what happened to Bennett serves as a cautionary tale that people with 401(k) accounts and other types of retirement savings accounts need to be on guard. The good news in Bennett’s case is that American Funds, the mutual fund company that holds her retirement savings, has agreed to restore the money she lost, even though at first Bennett said representatives gave her no assurance of reimbursement. In spear phishing, cyberbandits send emails, purportedly from a known or trusted sender, in the hope of persuading potential victims to reveal confidential financial information. “E-mail compromises, spear phishing and social profiling are some of the key tactics being used to target all types of assets, including retirement accounts.” “In other words, directly at the public,” Silberstein said. Public Interest Research Group.Īt a 2019 forum for institutions involved in retirement planning, industry expert Larry Goldbrum, of Reliance Trust, told attendees that while overall cyberfraud and account fraud was down - cyberfraud amounted to $14.7 billion in 2018 - fraud in retirement accounts was rising, according to a report by the National Association of Plan Advisors.Ĭybercriminals today are “looking for any possible route into people’s financial transactions, and they are increasingly focusing their efforts outside financial institutions’ firewalls,” said Steven Silberstein, chief executive officer of Financial Services Information Sharing and Analysis Center, an industry consortium dedicated to reducing cyber-risk in the global financial system. “Hackers are finding it’s getting harder to hack bank accounts, so they’re saying where else is there more money? Where can we go? And they’ve started to discover 401(k) accounts, they’ve started to discover retirement funds,” said Ed Mierzwinski, senior director of the federal consumer program for the U.S. It's an issue to be aware of as cyberattacks on retirement funds rise. When she contacted a representative at the mutual fund company, no immediate guarantee was made that she’d ever see that money again. A bank cashed the first two checks, but when Bennett discovered the heist, payment was stopped on a third check.īut another shock was still in store for Bennett. Someone had stolen her identity and was able to pose as her, changing Bennett’s mailing address, redeeming big chunks of her mutual funds and having checks mailed to new locations - first to the Minneapolis-St. “Indeed, my money had been systematically withdrawn over the past couple of months,” Bennett said she learned after contacting her employer’s retirement plan adviser and the mutual fund company that held the money. I thought there must be some mistake here,” she said. When she logged in to view her account in November, she expected to see a balance of more than $80,000. Instead, she saw a balance of only about $8,000. “Maybe every couple of months I’d go online and take a look at it,” said Bennett, of Madison. Beth Bennett didn’t check on the balance in her employer-sponsored retirement account very often.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |