FOR IMMEDIATE RELEASE

Orlando, FL – July 8, 2025 – A seemingly insignificant $920 bribe has led to a $140 million cyber heist affecting six Brazilian banks, underscoring the escalating threat of insider actions and third-party vulnerabilities. Roy Richardson, Chief Security Officer of Aurora InfoTech, calls on organizations to urgently reevaluate their internal security protocols, vendor risk management strategies, and cyber liability coverage.

As reported by various media outlets, the breach originated when an employee at a financial connectivity provider sold their login credentials to cybercriminals. This single point of failure enabled attackers to infiltrate multiple financial institutions, resulting in one of the most significant cyber thefts in recent history.

This wasn’t a failure of technology; it was a failure of trust,” said Richardson. “Cybercriminals are no longer just exploiting system flaws; they’re exploiting human behavior. In today’s hyperconnected environment, your weakest vendor or most disengaged employee can become your greatest liability.”

This incident is part of a growing trend of supply chain attacks, where adversaries target third-party service providers to gain access to larger, more secure organizations. As businesses increasingly rely on external vendors for critical operations, ranging from IT infrastructure to financial services, their attack surface expands significantly.

According to the 2024 Ponemon Institute, insider threats have surged by 40% over the past two years, with the average incident now costing $16.2 million. Additionally, 45% of organizations reported business disruptions due to third-party security failures.

Supply chain attacks are no longer theoretical, they’re operational realities,” Richardson added. “Organizations must go beyond basic vendor questionnaires and implement continuous monitoring, contractual security obligations, and shared incident response protocols.

Richardson emphasized that traditional perimeter-based defenses are no longer sufficient. He recommends that organizations:

  • Establish formal insider threat programsthat include behavioral monitoring and access controls.
  • Conduct regular tabletop exercisesto test incident response readiness across departments and vendors.
  • Reassess cyber liability insurance policiesto ensure they reflect the organization’s actual risk exposure and supply chain complexity.

Explore Roy Richardson’s full article for a straightforward look at this incident and the practical steps businesses can take to reduce insider and vendor risks. Read more here.

Aurora InfoTech, a leading Cybersecurity firm, continues to work with organizations across industries to strengthen their Cybersecurity posture through proactive risk mitigation strategies, Cyber Liability Management programs, and executive-level advisory.

For more information, please visit Aurora InfoTech’s website at www.aurorainfotech.com or contact us at (407) 995-6766.

Media Contact: Rezelle Rosales, (407) 995-6766, rezellerosales@aurora-infotech.com

About Aurora InfoTech:

Aurora InfoTech is a recognized leader in Cybersecurity Consulting and Managed IT Security Services. Founded in 2016 and backed by over 25 years of global experience, the company has been named a Top 250 Managed Security Services Provider (MSSP) in 2021, 2023, and 2024. Aurora InfoTech partners with organizations across industries to enhance their Cybersecurity posture through proactive risk mitigation, cyber liability management, and executive-level advisory services.

About the UCF Business Incubation Program:

The University of Central Florida Business Incubation Program is a community resource that provides early-stage companies with the tools, training and infrastructure to become financially stable, high-growth/impact enterprises. Since 1999, this award-winning program has provided vital business development resources resulting in over 300 local startup companies reaching their potential faster and graduating into the community where they continue to grow and positively impact the local economy.

With eight facilities throughout the region, the UCF Business Incubation Program is an economic
development partnership between the University of Central Florida, the Corridor, Lake, Orange,
Osceola and Seminole Counties, and the cities of Eustis, Kissimmee, Orlando and
Winter Springs. In 2023, current incubator clients supported over 1,000 employees and
generated over $120 million in revenue. Nineteen companies graduated from the program and
remained in the local community. For more information, visit www.incubator.ucf.edu.