Agency that oversees troubled insurance firms for state sues to recover millions lost in cyberattack
A quasi-state agency has filed a federal lawsuit in an effort to force private insurance companies to cover millions of dollars lost last year through “wrongful wire transfers” in a cybercrime with ties to
The lawsuit, filed Tuesday, contends that
But insurers have balked while questioning whether the quasi-state agency, known as the Special Deputy Receiver, failed to follow specific policies and safeguards designed to prevent such cybertheft, according to documents in the case.
The Tribune disclosed in January that
Once the scheme was discovered in
The special deputy receiver’s office is a nonprofit that works with Gov. J.B. Pritzker’s director of the
The fraudsters allegedly duped employees in the receiver’s office into sending wire transfers that came from the accounts of two automobile insurance firms under liquidation and overseen by the receiver.
The firms were
The
The Affirmative estate initially suffered a loss of
Failure to recover the losses could limit the ability to pay claims to policyholders, according a person familiar with the way the receiver’s office operates.
The nearly
The biggest wire transfer that has not been recovered was for
The scheme was discovered on
An internal review of the matter showed fraudsters first logged into the mailbox of
When a ninth transfer request came through, the assistant controller reached out to Harrell to question the legitimacy of the request, and officials immediately took action to stop as many transfers as they could.
The fraudsters likely focused on Harrell in what is known as a “spear phishing attack.” That’s when criminals target high-ranking individuals in a corporation or agency rather than trying employees throughout the company.
The receiver said an internal report indicated “a significant possibility exits” that Harrell’s “email credentials were compromised via his personal phone or tablet,” but how the phishing scheme started is difficult to pinpoint.
Harrell stayed with the receiver for a few months after the cyberattack to help address the matter and then offered to resign and left the agency. He had no comment Friday about the lawsuit.
But in an interview last December, Harrell said COVID protocols kept workers away from the office and that prevented the routine face-to-face communication that could have normally stopped the fraudulent activity.
“They controlled my email and gave directions,” Harrell said of the cybercriminals. “My folks thought I was directing them to invest in a certain way” — and that his bosses had approved the transactions, he said.
Harrell said he spotted the wrongful transactions “right away” and “called everybody within two minutes” to address the matter with senior management, including the top technology officials and lawyers.
The
Further, The
The
“However, due to a series of oversights, errors and what appears to be disregard of ... policies and procedures” by agency employees, the
The employees who “made the transfers have indicated that they understood that the transfers were intended to fund investments which they suspected or knew were contrary” to agency policies and procedures but moved the money anyway, the
The new company did not take over the assets or the liabilities of the
As of its
Only about 100 of the old company’s customers are among the current customers in the new company, according to Buckle.
©2022 Chicago Tribune. Visit chicagotribune.com. Distributed by Tribune Content Agency, LLC.
Abacus Life Settlements and BlockCerts Blockchain Partner to Lead the Next Generation of Life Insurance and Annuity Purchases using Blockchain
MLTPLY Launches Stable Insurance Using INSTANDA’s Platform in Ten Weeks
Advisor News
Annuity News
Health/Employee Benefits News
Life Insurance News