January 3, 2023
Key things to know
Wealthy individuals and family offices are particularly vulnerable to identity theft, ransomware and other types of fraud.
Wire fraud and phishing are two specific types of fraud to be vigilant about.
There are steps you can take to guard against cybercrime and fraud.
Cybercriminals understand just how sensitive online financial data is, and they’re continually developing new ways to exploit these vulnerabilities. In 2021, there were 1,864 data breaches in the U.S.—an increase of 68% over 2020. This set a record, surpassing 2017’s all-time high of 1,506 breaches by 23%.1
Family offices and individuals with significant wealth may be especially vulnerable to cybercrime, identity theft, fraud and other crimes centered on using stolen information for no good, according to Patrick Cowan, Chief Banking Officer for Ascent Private Capital Management.
“Knowing that the end payoff may be greater, criminals will set their sights on these larger targets,” he says. And with more assets and accounts to keep track of, regularly monitoring smaller transactions may be difficult.
Most cybersecurity experts will tell you that it’s not a matter of if you’ll become a target, but rather when it will happen. “A bad actor will figure out that you’re a person or family of means and try to exploit that for their own good,” says Cowan. “They may use social media to infiltrate your organization, launch a phishing campaign that fools the recipients into thinking the emails are legitimate correspondence from a financial institution or masquerade as part of your financial team.”
Wealthy individuals and family offices may also receive ransomware requests, become victims of identity theft or create potential security risks by using open networks, public hotspots and/or unverified mobile applications. Anytime someone signs into a site or uses an application that sends unencrypted data over a network, bad actors can capture and use the confidential or sensitive data.
Unfortunately, these are problems that aren’t just going to go away on their own. Individual criminals are getting more sophisticated with their attacks, and certain nation-states regularly back cybercrimes. One recent report found that 86% of respondents have experienced a cyberattack by an organization acting on behalf of a nation-state, with each incident costing the victims more than $1 million.2
“Clearly, we’re not just talking about a couple of unaccounted-for $30 charges on your credit card,” Cowan says. “The scams that wealthy individuals and family offices may experience go beyond occasional inconveniences. The bad actors do their research and homework, and they’re very patient.”
“The scams that wealth individuals and family offices may experience go beyond occasional inconveniences. The bad actors do their research and homework, and they’re very patient.”
- Patrick Cowan, Chief Banking Officer, Ascent Private Capital Management
For example, cybercrime starts with infiltrating high value targets such as a family office’s computer systems using phishing emails and patiently combing through thousands of emails until they find a way to exploit the organization.
One area of concern for individuals is preventing wire fraud, a particular problem for anyone who invests in real estate. A cybercriminal who knows that a deal is closing on Monday, for example, may send a fraudulent email that includes down-payment wiring instructions and urgent messaging about how the seller is going to “find a new buyer” if the payment isn’t sent by the Friday before closing.
“In reality, no one needs money that fast,” Cowan says. “It can always be wired on the morning of the closing.”
He advises that even if the wire instructions appear to be from a legitimate title company or other sender, you should call them back and ask them to walk you through the steps and to verify the account numbers. This is important, because once money is wired out—and especially if the funds are going to another country—getting it back will be next to impossible.
Phishing is another entry point that can happen the second a family member or employee clicks on a link in an email or, in some cases, hovers over an “invisible” link that’s embedded in the message.
To avoid phishing, never click on a website link from a suspicious email. If you’re being instructed to log into your account, don’t do it. Instead, go to the website or app and log yourself in.
Here are seven more steps you can take to protect your assets from cybercriminals who may be targeting your family and/or your family office:
There are many different online scams and vulnerabilities that hackers are waiting patiently to exploit in hopes of a major financial windfall. And while you may not know where the next digital fraud threat will come from, by taking these steps to prevent cybercrime, you’ll be better prepared to identify and avoid online threats before they happen.
Learn more about how Ascent works with and supports clients.
1. Annual Data Breach Report. Identity Theft Resource Center.
2. In the Crosshairs: Organizations and Nation-State Cyber Threats. Trellix Global Threat Research.
Let’s start a conversation. Please request a call and an Ascent wealth management professional will contact you shortly.
Ascent’s regional team locations across the U.S. offer personalized support and a full suite of wealth management services.
FAMILY OFFICE TRENDS
Current technology that aligns with your family office’s goals can create efficiencies and other benefits. Evaluate family office software against your needs.
PERSONAL LEGACY PLANNING
These steps can help you create a legacy plan that both reflects your values and incorporates tax-efficient ways to transfer your assets.