"When you have a young child and you move into your house for the first time and you close on that house, that should be a really special moment, not a moment when a massive amount of money is stolen from you, so the whole experience has been marred."
The couple decided to sue the title company in the hopes of recovering their money.
A similar story came to light in October 2017 when Shannyn Allan received an email containing wire instructions to complete the purchase of her dream home in San Antonio. She unknowingly wired over $52,660.57 to a bank account under hackers' control. Fortunately for her, her bank contacted her shortly afterward with the real wire transfer instructions. She realized she'd been scammed and subsequently canceled the previous transfer.
Those types of stories are only the tip of the iceberg. Phishing threat management firm PhishMe clarifies this reality:
"The National Association of Realtors is itself often spoofed in what we call 'generic email' phishing pages. The well-worn ruse: you receive a message telling you to log in to view a great list of hot properties—like this page, recorded in April 2016."
In addition, the company confirmed it's seen plenty of scams that try to go after real estate professionals' email credentials. No doubt those responsible leverage successful phishing attacks to target buyers with modified wire transfer instructions.
Those involved in a real estate transaction can protect themselves by familiarizing themselves with how a BEC attack works. They should then use that knowledge to verify all purchase instructions, exercise caution around last-minute changes, cleanse their email inboxes of sensitive information, and exercise good digital security hygiene.