Though BEC makes up only 7% of all phishing attacks, it has caused more than $26 billion in losses just in the last four years. Learn how to recognize such attacks and what you can do about them.
Over the past couple of years, scammers stole millions of dollars from businesses by compromising their official email accounts and using them to initiate fraudulent wire transfers. Scammers would typically impersonate high-level executives, send phishing emails from seemingly legitimate sources, and request wire transfers to alternate, fraudulent accounts.
What is Business Email Compromise?
Business Email Compromise (BEC) is a type of scam that targets businesses that conduct wire transfers and have suppliers abroad. Corporate emails are compromised either through keyloggers or phishing attacks to do fraudulent transfers, resulting in hundreds of thousands of dollars in losses. BEC scammers rely heavily on social engineering tactics to trick unsuspected executives and employees. Often, they impersonate executives who are authorized to do wire transfers. Before anything, scammers make sure to carefully research and closely monitor their target victims and their companies.
Though BEC makes up only 7% of all phishing attacks, it has caused more than $26 billion in losses just in the last four years, according to the FBI. 91% of attacks happen during weekdays since attackers try to mimic business behavior as much as possible. The average Business Email Compromise attack targets no more than six employees. Almost all of the BEC attacks are designed as urgent requests to get a fast response. The costs and damages from BEC attacks are high. In the last year alone, the average amount lost per company due to BEC attacks was $270,000. But, damages are not only of financial nature. The impacts include business interruption, data loss, reduced productivity, regulatory fines, and brand damage.
Here are three basic BEC attacks to watch out for:
A robust email security system will keep every message and your system protected.
© AnubisNetworks 2023 • [EN] Privacy Policy • [PT] Política de Privacidade • Cookie Policy