The most common attacks against business emails are phishing and ransomware. Essentially, a business email compromise (BEC) is when an attacker impersonates the actual owner of the account to steal money or sensitive information from the company.
A (BEC) attack can cause thousands of dollars in damage to a business and take a lot of time and resources to recover.
Cybercriminals are not only trying to get money but also confidential data.
Real-Life Examples of BEC
An example of a BEC attack is an email that appears to come from one of the company's long-time employees, typically the CEO or CFO, requesting a wire transfer to a specific account. The email is usually well written, sometimes including dates, additional contact information, and contact numbers. In addition, they typically use hacked employee email accounts or email addresses that look similar to official company email.