A contractor who worked in the IT department of the Bank of New York has admitted to stealing more than $1.1 million from charities and nonprofits, among other organisations.
Adeniyi Adeyemi stole personal information from 2,000 bank employees and then used the information to carry out the thefts over eight years.
Adeyemi took the personal data to open more than 30 bank and brokerage accounts with a number of financial institutions, including E*Trade and Fidelity.
The 27-year-old former IT worker used the charities' banking details to set up wire transfers on the E*Trade and Fidelity sites to transfer money from the charities' account to his dummy accounts. He then withdrew the funds or moved them over to a second layer of dummy accounts.
Many charities opt to place their bank details available online to make donations simpler for online users. Of course, this leaves them more open to attacks such as this.
Adeyemi also used the personal data he stole to take money from the bank employees, again by moving money over to the dummy accounts. To avoid detection, he ensured that no transfer would be more than $10,000 the point at which all financial institutions are required to report transactions to the US Treasury.
However, the New York/New Jersey Electronic Crimes Task Force of the United States Secret Service became aware of some suspicious activity and traced it back to wireless internet connections in Adeyemi's apartment building.
Some of the organisations affected by the scam include Goodwill Industries of Greater New York and New Jersey, the Sudanese American Community Development Organisation and the American Association for Clinical Chemistry.
"This defendant invaded the privacy of thousands of employees by stealing their personal and private information," said Manhattan District Attorney Cyrus R Vance, Jr.
"He victimised his colleagues, charities, and nonprofits. Particularly because identity theft is such a serious problem in our city and nation, I thank the members of our Cybercrime and Identity Theft Bureau for their work on these difficult cases," he added in a statement.
Adeyemi is due to receive his sentencing on 21 July.
-
Should AI PCs be part of your next hardware refresh?AI PCs are fast becoming a business staple and a surefire way to future-proof your business
-
Westcon-Comstor and Vectra AI launch brace of new channel initiativesNews Westcon-Comstor and Vectra AI have announced the launch of two new channel growth initiatives focused on the managed security service provider (MSSP) space and AWS Marketplace.
-
The IT Pro Podcast: The front line of fraud techIT Pro Podcast With tools such as deepfakes, the future of fraud tech relies on cutting edge AI as much as good security practice
-
Podcast transcript: The front line of fraud techIT Pro Podcast Read the full transcript for this episode of the IT Pro Podcast
-
LAPSUS$ breached T-Mobile systems, stole source codeNews T-Mobile has denied that the hackers obtained customer or government information
-
Exclusive: Former Shiseido staff say company was aware of data breach weeks before official noticeNews Fake companies were created using the stolen identities of hundreds of Shiseido employees, former staff claim
-
What is smishing?In-depth A closer look at one of the most perilous forms of phishing
-
SentiLink raises $70 million for its identity verification platformNews SentiLink’s ID Theft Score helps businesses combat synthetic fraud
-
More than half of businesses saw rising fraud levels this yearNews Each individual identity fraud attempt could cost an organisation between £1,000 and £4,999 on average
-
A simple guide to the dark webWhitepapers Why the continued rise of the dark web is a threat to corporate data and why businesses need to take action
