Abstract
It doesn’t always take a complicated malware or ransomware attack to break your business. Sometimes it’s as easy as someone sending you an email and pretending they have authority over you. Compromising a business email is one of the most common and easy hacking attacks to pull off, so you should be aware of how to put a stop to it.
Defining Business Email Compromise
Other threats might require technical skills to pull off, but BEC is not one of them. BEC is when a hacker or scammer convinces the user that they are someone within the organization with authority, like an executive or administrator, and asks them for funds. The worst part is that these requests actually work a lot of the time.
The FBI estimates that BEC attacks have cost businesses more than $43 billion, and the number is on the rise. Companies in at least 177 countries have reported BEC attacks, so it’s an international problem.
How It Works
The biggest thing to keep in mind is that it’s remarkably easy for a hacker to research your organization, look into who might be a good target, and spoof an email address. Social engineering tactics like these can pay off for hackers with relatively limited time investment.
More dangerous types of BEC do exist, and they can generate even more revenue for hackers. Hackers can effectively break into legitimate email accounts for an executive or administrator with the intention of finding legitimate reasons to contact people. The convincing request, therefore, appears to be authentic, and an eager employee might jump the gun and fulfill the request without thinking about it.
What’s the Best Approach to Stop It?
Like with most cybersecurity-related issues, we recommend you take two different approaches that work in tandem with each other to keep your business safe. First, implement the best security tools out there that protect your network from the myriad of threats out there. Second, train your team on how to identify and address potential threats. Don’t just do it at the time of hire, either; make sure you reinforce it over time.
NetMGM can help your business ensure that it’s as best protected from cyberthreats as possible. To learn more, call us at 888-748-2525.
ABOUT THE AUTHOR
Rafiq Masri
With over 25 years of experience in Information Technology, Rafiq is one of the most accomplished, versatile and certified engineer in the field. He has spent the past 2 ½ decades administering and supporting a wide range of clients and has helped position Network Management, Inc. as a leader in the IT Managed Services space.
Rafiq has built a reputation for designing, building and supporting top notch IT infrastructures to match the business objectives and goals of his clients.
Embracing the core values of integrity, innovation, and reliability, Rafiq has a very loyal client base with some customer relationships dating back 20+ years.
Rafiq holds a bachelor’s degree in Mechanical Engineering from the University of Michigan and has completed graduate programs in Software Engineering and Business at Harvard and George Mason University. Rafiq is a former founder and CEO of Automation, Inc. in Ann Arbor, Michigan as well as a valued speaker on entrepreneurship and technology at industry events such as ExpoTech and others.