Email fraud leads to two main threats - one is Business Email Compromise (BEC) where attackers pretend to be you; the other one is Email Account Compromise (EAC) where attackers become you. BEC/EAC scams have cost the victimized organizations over $26 billion since 2016. What they have in common is that they both target people.
They both rely on social engineering and are designed to solicit fraudulent wire transfers or payment. Unlike malware attacks, BEC and EAC don’t typically include a detectable malicious payload. These types of threats can be hard to
recognize because of the target these organizations requests sent by the impostors seem very routine and reasonable
During this webinar, Proofpoint and Carahsoft discussed:
- What BEC and EAC are and how they work
- The common attack tactics regarding these new forms of email threats
- Best practices to defend against BEC and EAC