The FBI has issued a warning on the dramatic increase of Business Email Compromise (BEC) scams, swindling over US$2.3 billion from companies worldwide, notably the US and Europe. The scams do not discriminate, with targets ranging from small businesses to large corporations. All the perpetrators need is the company executive’s email address (or someone close, like their personal assistant) and the ability to make a convincing fake email.Read More
There’s a reason why the FBI estimates that the average loss caused by Business Email Compromise (BEC) to be $130,000 per company. Employees are not familiar with current social engineering strategies, and the network setup is not equipped enough to keep the threat from getting in the network. And this same situation is clearly depicted in an ongoing BEC campaign targeting companies in the US, Middle East, and Asia.
The attack, which has been traced back to Lagos and Kuala Lumpur, targets companies from several industries such as real estate, manufacturing, and construction.Read More
In May 2014, an accountant to a Texas manufacturing firm received an email from a familiar correspondent, his company’s CEO. The email instructed him to wait for a call from a partner company and warned against sharing the email to anyone else for fear of regulation backlash. The company ended up losing US$ 480,000 to wire fraudsters who used the potent and very costly business email compromise (BEC) scam or CEO fraud. The firm is now suing its cyber insurer for not covering the loss.Read More