BEC Archives - Cyber Security Minute

Making Cyber Insurance Available for Small Biz, Contractors

Issued by: Dark Reading

The soaring costs of recovering from a security incident or data breach is driving interest in cyber insurance. While cyber insurance is typically viewed as a product mainly for large organizations seeking coverage and protection against state-sponsored attackers, criminals, and politically motivated hackers, it is also valuable to small and midsized companies and independent contractors….

Malware & Threats

Fast-Growing Dropbox Campaign Steals Microsoft SharePoint Credentials

Issued by: Dark Reading

Threat actors are using messages sent from Dropbox to steal Microsoft user credentials in a fast-growing business email compromise (BEC) campaign. The effort evades natural language processing (NLP)-based security scans, and demonstrates the rapid evolution of these types of attacks. Researchers at Check Point Harmony observed more than 5,000 of the attacks — in which…

Malware & Threats

BEC Fraudsters Expand to Snatch Real-World Goods in Commodities Twist

Issued by: Dark Reading

Some cybercriminals are flipping their playbook on business email compromise (BEC) scams and, rather than posing as vendors seeking payment, are now posing as buyers, taking their profits in easily sold commodities. By adopting the identity of a known company, criminal actors are able to order various goods in bulk, get beneficial terms of credit,…

Malware & Threats

Rising ‘Firebrick Ostrich’ BEC Group Launches Industrial-Scale Cyberattacks

Issued by: Dark Reading

Business email compromise (BEC) has become one of the most popular methods of financially motivated hacking. And over the past year, one group in particular has demonstrated just how quick, easy, and lucrative it really is. In a Feb. 1 blog post, Crane Hassold, director of threat intelligence at Abnormal Security, profiled “Firebrick Ostrich” a…

Vulnerabilities

Cybercriminals See Allure in BEC Attacks Over Ransomware

Issued by: Dark Reading

While published trends in ransomware attacks have been contradictory — with some firms tracking more incidents and other fewer — business email compromise (BEC) attacks continue to have proven success against organizations. BEC cases, as a share of all incident-response cases, more than doubled in the second quarter of the year, to 34% from 17%…

Malware & Threats

FBI: Cybercrime Victims Reported Losses of $4.2 Billion in 2020

Issued by: Security Week

The number of complaints received by the FBI in 2020 increased significantly compared to the previous year, when it got roughly 467,000 complaints. The total reported losses for 2019 were approximately $3.5 billion. Since 2016, reported losses total $13.3 billion, the agency said. The FBI said its Recovery Asset Team, which it established in 2018…

Malware & Threats

How Abnormal Security combats business email compromise

Issued by: CSO

When looking at all the different ways that hackers can threaten networks and enterprises, flashy incidents like ransomware scams often come to mind. But a relatively new kind of attack called business email compromise (BEC) has taken the lead in both frequency and overall damage, quickly becoming public enemy number one. According to the FBI’s…

Network Security

Ransomware spiked 752% in new families

Issued by: Help Net Security

2016 was truly the year of online extortion. Cyber threats reached an all-time high, with ransomware and Business Email Compromise (BEC) scams gaining increased popularity among cybercriminals looking to extort enterprises. A 752 percent increase in new ransomware families ultimately resulted in $1 billion in losses for enterprises worldwide, according to Trend Micro.