CISO Guide to Business Email Compromise
Business email compromise (BEC) is the most significant cybersecurity threat to enterprise organizations, with $2.4 billion lost in 2021 alone. This type of email attack occurs when a cybercriminal uses social engineering to impersonate a trusted contact—typically an executive, coworker, vendor, or partner.
Business email compromise costs organizations $2.7 billion per year.
A full 25% of the $10.9 billion in losses reported to the FBI Internet Crime Center (IC3) in 2022 was attributable directly to BEC. And Abnormal research found that BEC attacks increased by 175% between 2021 and 2022.
Discover how these attacks trick your employees into sending money and valuable information, and what you can do to stop them.
Download this white paper, created by Dr. Eric Cole at Secure Anchor, to:
- Learn what BEC is and which types cybercriminals use to attack
- Discover why BEC attacks slip through existing security infrastructure
- Receive tips on what to consider when evaluating a new email security solution
Fill out the form to receive your copy of the CISO Guide to BEC today.
After reading this guide, you are eligible for .5 CPE credits through (ISC)².
Download Now
See the Abnormal Solution to the Email Security Problem
Protect your organization from the full spectrum of email attacks with Abnormal.
Related Resources
A recent study uncovered the emergence of an Israel-based threat group that launches sophisticated, multistage BEC attacks targeting global enterprises.
Security team implements Abnormal to prevent advanced attacks targeting local governments nationwide.
Business email compromise (BEC) is no joke, and it continues to increase—despite increased awareness of the issue. Learn about the future of BEC attacks in this on-demand webinar.
Threat actors have shifted their strategy—moving away from internal impersonation and instead focusing on impersonating third parties. Watch the webinar to learn more about this new threat: financial supply chain compromise.
For years, executives were the go-to impersonated party in business email compromise attacks. Now, threat actors are opting to impersonate vendors and suppliers instead.
Colonial Pipeline. CNA Financial. Quanta. Even the NBA. Hardly a week goes by without a ransomware story hitting the news, as organizations worldwide are targeted by an attack. But are there more dangerous threats out there?
From June-December 2021, Abnormal Security discovered that nearly all types of advanced email attacks grew in frequency, with a new trend of phone fraud using email as the first contact.
Rachel Tobac talked to Abnormal Security's CISO Mike Britton about hacking, social engineering attacks, and how to protect your organization.
Adversaries are increasingly targeting the enterprise email inbox, and security teams need to look further than just spam and phishing attacks.