Nigerian scammer arrested by FBI could be behind €13m BOV cyberattack
09 Jul 2020

The United States government has gained custody of a Nigerian man who could have been behind the multi-million cyberattack on Bank of Valletta in February 2019.

The FBI’s criminal complaint says that Ramoni Igbalode Abbas aka “Hushpuppi”, who amassed 2.4 million followers on Instagram flaunting luxury cars, designer clothing, and private jets, conspired to “launder funds intended to be stolen through fraudulent wire transfers from a foreign financial institution, in which fraudulent wire transfers, totalling approximately €13 million were sent to bank accounts around the world in February 2019.”

The FBI said Abbas’s co-conspirator conspired with the persons who initiated the fraudulent wire transfers, to launder the funds that were intended to be stolen. Abbas specifically provided the co-conspirator with two bank accounts in Europe that Abbas anticipated would each receive €5 million of the fraudulently obtained funds.

“Based on information from FBI agents investigating the cyber-heist from the Foreign Financial Institution, I know that, on February 12, 2019, the Foreign Financial Institution suffered a computer intrusion and cyber-heist in which approximately €13 million (approximately $14.7 million) was fraudulently wired from the Foreign Financial Institution to bank accounts in multiple countries,” the co-conspirator told the FBI.

According to the FBI’s investigation, in a message on 16 January, 2019, the co-conspirator contacted Abbas for these two bank accounts, which he said would be from the country in which the bank is located.

The “hit” was said to be planned for 12 February. Abbas sent him a Romanian bank account he used for larger amounts.

Hackers sometimes will attempt to conduct cyber-heists by gaining access to a bank’s computer network and then sending fraudulent and unauthorized SWIFT messages.

SWIFT (Society for Worldwide Interbank Financial Telecommunication) provides a network that enables financial institutions worldwide to send and receive information about financial transactions. SWIFT does not facilitate funds transfers but sends payment orders, which must be settled by correspondent accounts that the institutions have with each other.

On 13 February, 2019 Abbas sent screenshots showing that the funds had not arrived in the Romanian bank account. The co-conspirator responded, “Today they noticed and pressed a recall on it, it might show and block or never show.” He then sent an image of a news article to Abbas detailing the theft of funds from the foreign financial institution, followed by a message stating “Look it hit the news.” Abbas then replied “damn.” The co-conspirator said: “Next one is in few weeks will let U know when it’s ready. to bad they caught on or it would been a nice payout.”

Abbas is accused of participating in a number of “business email compromise” scams. By posing as trusted employees or customers of a target organization, Abbas and his fellow fraudsters allegedly tricked employees into sending large sums to bank accounts they controlled.

By Matthew Vella, Malta Today, 8 July 2020

Read more at Malta Today

RiskScreen: Eliminating Financial Crime with Smart Technology

Advance your CPD minutes for this content, by signing up and using the CPD Wallet

FREE CPD Wallet