A Nigerian cybercrime group known as SilverTerrier is targeting the transportation and aviation sectors with business email compromise (BEC) scams.
The group recently targeted a senior executive at a transportation company, using the stolen credentials to send fake invoices to the firm’s customers and tricking one of them into transferring a $100,000 payment to the cybercriminals.
SilverTerrier uses lookalike domains to trick targets into disclosing login credentials, and its phishing emails often come from newly created domains that closely resemble those of legitimate companies in the targeted sectors.
Domain registration records connected to the group’s phishing campaigns include identifying information such as phone numbers and additional email addresses, which can be used to unmask the group’s members.
The group is increasingly targeting the aviation and transportation sectors, and the BEC scams are the group’s modus operandi, with successful campaigns often resulting in six-figure losses for victim companies.