Cyber Incident Victim: Nikkei America
Date:
Oct 2019
Location:
United States of America
Summary
A subsidiary of a major global media corporation suffered a $29 million loss due to a business email compromise (BEC) attack, where scammers impersonated a senior executive to deceive an employee into authorizing fraudulent wire transfers. The incident prompted the organization to engage legal counsel, file reports with authorities in multiple jurisdictions, and initiate recovery efforts while cooperating with ongoing investigations. This high-profile fraud reflects broader trends of escalating financial losses from such schemes, which have collectively impacted billions globally through sophisticated social engineering tactics targeting corporate funds.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
In late September 2019, an employee of Nikkei America—a New York-based subsidiary of Japanese media conglomerate Nikkei Inc.—transferred approximately $29 million (3.2 billion yen) of company funds to fraudulent bank accounts controlled by malicious actors. The attackers executed a business email compromise (BEC) scheme by impersonating a Nikkei management executive and issuing fraudulent instructions to the employee. This incident represented one of the largest publicly disclosed BEC losses at the time, impacting Nikkei America's operational finances. The fraudulent wire transfers were discovered shortly after execution, prompting Nikkei America to file formal damage reports with law enforcement authorities in both the United States and Hong Kong by October 30, 2019. The company retained legal counsel to investigate the underlying facts surrounding the unauthorized transactions. Nikkei publicly acknowledged the incident on October 30 through a press release but declined to specify detection methods or internal control failures that enabled the transfer.
Nikkei initiated recovery efforts to reclaim the stolen funds while cooperating with ongoing investigations by relevant authorities. The company implemented confidentiality measures regarding investigative details, refusing further public commentary to avoid compromising law enforcement actions. The financial impact amounted to a direct loss of $29 million without disclosed secondary operational or reputational consequences. This incident occurred amidst rising global BEC activity, with the FBI reporting $26 billion in losses from similar schemes between June 2016 and July 2019. Parallel attacks included a $37 million BEC loss at Toyota Boshoku Corporation's European subsidiary in August 2019. Nikkei's status as a major media entity—with 4 million subscribers, ownership of the Financial Times, and 40 affiliated companies—highlighted the vulnerability of large corporations to social engineering attacks despite substantial resources. No technical intrusion details, employee disciplinary actions, or security control enhancements were disclosed in available reports.