top of page

DIG this week's security tip

Updated: Dec 6, 2022


DIG this Cyber Tip - Montana Cybersecurity
DIG this Cyber Tip

Business Email Compromise Attacks or BEC attacks are a new twist on phishing emails. BEC attacks are when an attacker obtains access to a business or executive’s email account and imitates the owner’s identity to defraud the organization and its employees, customers, or partners.

BEC Attack - Montana Cybersecurity
BEC Attack

Business Email Compromise Attacks or BEC attacks are a new twist on phishing emails. BEC attacks are when an attacker obtains access to a business or executive’s email account and imitates the owner’s identity to defraud the organization and its employees, customers, or partners.


A recent FBI advisory warns of a new type of BEC attack involving either meeting invites to virtual meetings or attackers joining existing meetings. They do this for several reasons including instructing employees to initiate transfers of funds or to collect information about the organization’s operations.


Though this is a new type of attack and still not widely seen, a good general practice is to always be careful when initiating payments or transferring information through email. In addition, never supply login credentials or PII via email.


The DIG’s Phish Report process not only lets you report suspicious emails, but we investigate and determine the validity of each one. If the email is determined to be malicious or suspicious, we let you know. If it isn’t, the original email is returned.


If you would like to learn more about how our Phish Report product could protect your organization from attacks like the BEC, contact us.






Comments


bottom of page