This alert may not be shared outside your organization, Do Not Repost or send, place on other websites, List servers, or send to others via email, including other associations or parties. Members and Law enforcement use only. Contact us for any permissions. To do otherwise will result in the loss of membership.
Complete Story
07/17/2025
How Simple IAM Control Could Have Presented Major Cyber-Attacks
Infosecurity Magazine
It’s often not the sophisticated malware or zero-day exploits that cause the most damage. It’s the simple, overlooked gaps in process and identity management. Recent high-profile breaches, including those at major UK retailers like Marks & Spencer and Co-op, have highlighted just how vulnerable organizations remain to low-tech, high-impact attacks.
These incidents weren’t the result of advanced persistent threats or nation-state actors. They were social engineering attacks, where threat actors impersonated employees and convinced IT support staff to reset passwords. No code was written. No systems were hacked. Just a convincing phone call.
Let that sink in.
The result? Unauthorized access to internal systems, operational disruption, and a wave of scrutiny over how something so basic could slip through the cracks.
More Info
Alerts
The FRPA alert system distinguishes us from other groups by gathering and providing information to law enforcement, retailers AND financial institutions.
more information
Resources
Your electronic library to help in fighting financial fraud for all of our partners.
more information