TOPIC: Operations

SBA Release of PPP Data May Lead to Uptick in Attacks

On Monday, the U.S. Small Business Administration (SBA) released loan data for large Paycheck Protection Program (PPP) loans made to businesses over the past few months.  The data released contains some concerning information that all financial institutions (FIs) and their business customers must now take into consideration to protect against general fraud, targeted phishing and other types of social engineering, and corporate account takeover (CATO.)

The data released by the SBA includes one very large spreadsheet of all PPP loans exceeding $150,000 with loan amount ranges, names of business recipients, associated address details, and the most concerning element: the lender.  Your customer names along with their lending partner.  What could possibly go wrong?  See our blog for more information: