SafeUM
Home Blog Services Download Help About Recharge
EN
RU

Axarhöfði 14, 110 Reykjavik, Iceland

Iceland - 2015
SafeUM
Blog
Services
Download
Help
About
Recharge
Menu
EN
Lang
EN
RU
Archive
TOP Security!
9 Jul 2015

A London hedge fund lost $1.2 million in a phone scam

The finance chief at Fortelus Capital Management LLP got an alarming phone call just as he was getting ready to leave work on a Friday. The caller said he was from Coutts, the London-based hedge fund’s bank, and warned there may have been fraudulent activity on the account.

Fortelus Chief Financial Officer Thomas Meston was reluctant, but agreed to use the bank’s smart card security system to generate codes for the caller to cancel 15 suspicious payments. He hung up just after 6 p.m., according to court filings.

When Meston logged on to the firm’s online bank account the following Monday, he saw that 742,668 pounds ($1.2 million) was gone. Coutts, a unit of Royal Bank of Scotland Group Plc, had no record of the Friday phone call. Meston had been conned. Meston was terminated by Fortelus and is now being sued by the fund, which says he breached his duty to protect its assets. Details of the phone conversation, which took place in December 2013, were described in documents from the firm’s London lawsuit. Meston denies he was negligent and says he acted honestly, according to his court documents in the case.

The incident shows how even the most sophisticated online security systems can fail because of human error. Firms too often see cyber security as a technical issue and don’t recognize the risk of employees being targeted, the Bank of England said in a report last week that called cyber crime a growing threat to financial stability.

Weakest Link

“People are always the weakest link,” said Jason Ferdinand, a director at Coventry University who runs the U.K.’s first cyber security MBA course. Employees “often assume that they do not have to think about security because a machine or software is doing it for them.” Fortelus lawyer Daniel Astaire said no client funds were affected by the breach, and the firm reported it to the police, who are investigating. Fortelus has “strong internal policies against fraud prevention” and this was “an isolated incident,” he said in an e-mail.

Fortelus Capital Management in June 2014 switched its registration to the U.S and no longer has any investment activities in the U.K., Astaire said. Simon Goldring, a lawyer for Meston, declined to immediately comment. Meston “believed that he was preventing a fraud from being carried out against the claimants, and this belief was reasonable,” his lawyers said in court filings. They said he’s not personally responsible for the firm’s assets and that Coutts should have to repay Fortelus.

Friday Afternoon Scam

Hedge funds are not the only victims of a “Friday afternoon scam.” Zurich Insurance Group AG warned in May that law firms were targeted by fraudsters impersonating bank staff that asked for access to accounts, often late on a Friday. The frauds cost firms and their insurers an estimated 5 million pounds over three months this year, Zurich said.

The theft was carried out by an “unknown third party,” Fortelus said in court documents. The caller identified himself as “Simon Hughes” from the Coutts Online Fraud Response team and transfers were made to accounts under names including EE Traders, AA Ltd., MK Trader, P Plumbers and LLM Client Account, according to court filings.

Meston says that as part of his termination agreement with the fund, he has already agreed to give up salary and bonus payments worth 136,600 pounds. That includes three months he worked without pay, or about 25,000 pounds, as well as 95,000 pounds in cash and deferred bonuses that he surrendered. Jo Thorne, a spokeswoman for Coutts, declined to comment. “This story is sad because it may well have been an honest mistake, but because of the technological advances made in finance, where the majority of their business is digital, significant losses can happen very quickly,” said Ferdinand.

Tags:
fraud United Kingdom
Source:
Bloomberg
1707
Other NEWS
3 Jul 2020 safeum news imgage An encrypted messaging service has been infiltrated by police
4 May 2020 safeum news imgage Two-Factor Authentication ​What Is It and Why You Should Use It
12 Dec 2019 safeum news imgage Encryption is under threat - this is how it affects you
4 Nov 2019 safeum news imgage Should Big Decisions Be Based on Data or Your Intuition?
7 Jun 2018 safeum news imgage VPNFilter malware infecting 500,000 devices is worse than we thought
4 Jun 2018 safeum news imgage Hackers target Booking.com in criminal bid to steal hundreds of thousands from customers
1 Jun 2018 safeum news imgage Operator of World's Top Internet Hub Sues German Spy Agency
30 May 2018 safeum news imgage US says North Korea behind malware attacks
29 May 2018 safeum news imgage Facebook and Google targeted as first GDPR complaints filed
25 May 2018 safeum news imgage A new reason to not buy these cheap Android devices
24 May 2018 safeum news imgage Flaws in smart pet devices, apps could come back to bite owners
23 May 2018 safeum news imgage Google sued for 'clandestine tracking' of 4.4m UK iPhone users' browsing data
21 May 2018 safeum news imgage LocationSmart reportedly leaked phone location data onto the web
18 May 2018 safeum news imgage The SEC created its own scammy ICO to teach investors a lesson
17 May 2018 safeum news imgage Thieves suck millions out of Mexican banks in transfer heist
All news
SafeUM
Confidential Terms of Use Our technologies Company
Follow us
Download
SafeUM © Safe Universal Messenger

Axarhöfði 14,
110 Reykjavik, Iceland

Iceland - 2015