Stop Vendor Email Compromise Attacks

Protect your organization from attacks originating from compromised vendors in your email supply chain.
See a Demo
How Abnormal Detects VEC

Vendor Email Compromise Attacks are Evasive

Attackers often see vendors as the weakest link and compromise real vendor accounts to target another organization. They change reply-to addresses, add mail forwarding rules, and hijack existing email threads to update banking details or request payments for invoices.

How Abnormal Stops Vendor Email Compromise Attacks

  1. Understands normal vendor relationships and activity using behavioral AI to identify anomalies.
  2. Analyzes thousands of identity attributes to detect changes in behavior, including reply-to addresses changes and mail forwarding rules.
  3. Uncovers email content associated with attacks, such as urgent tones, unusual banking information, and more.

An AI-Native Approach to Stopping Vendor Email Compromise

  1. Ingests thousands of behavioral signals from multiple sources via the API integration to detect unusual email-sending patterns.
  2. Federated knowledge base (VendorBase) provides rich context on vendors across every Abnormal customer.
  3. Precisely detects content and tone associated with attacks using Human Behavior AI.

Abnormal Benefits of Stopping VEC


Saved in largest invoice fraud attack stopped by Abnormal.


Stopped by Abnormal from attempted supply chain compromise in 2023.

15 Hours

Saved for security teams each week.
Abnormal helps us to better protect our organization. We’ve seen a significant drop in BEC and order fraud, so now we have time to be more proactive on security.”
— Ryan Fritts, CISO, ADT

Discover How to Stop VEC

See how you can harness Human Behavior AI to block vendor fraud.
Get Inbound Email Security

See the Latest VEC Attacks

View the latest attacks blocked by the Abnormal platform.
View More VEC Attacks

Watch the VEC Attack Demo

Discover how Abnormal stops attacks from vendors that evade traditional solutions.
See Abnormal in Action

Stop Attacks from Compromised Vendors

Protect your organization from attacks that originate from compromised vendor accounts.
Request a Demo
Request a Demo