The FBI has observed an increase in cybercriminal actors using widespread
tactics to gain access to companies’ employee payroll data. In 2017, the FBI
and IC3 identified approximately 17 cases. As of July 2018, the FBI and IC3
have identified approximately 47 payroll diversion cases, with losses totaling
approximately $1million. Various institutions most affected by the outcomes
of this cyber focused scheme include but are not limited to: universities,
local school districts, healthcare, and commercial airway transportation. The
FBI has observed two main social engineering methods in which the
cybercriminal actors gain access to and alter employees’ information, either
via online phishing email or through telephone solicitation.