Our site uses cookies to make it work and to help us give you the best possible user experience. By using our site, you agree to our use of cookies. To find out more about cookies and how you can disable them, please read our cookies statement. 

Cookie Settings

You can manage your cookie settings by turning cookies on and off.

Click on the different cookie  headings to find out more about the types of cookies we use on this site and to change your settings. Please be aware that if you choose to turn off  cookies, certain areas of our site may not work and your browsing experience may be impacted.

For further information on how we use cookies, please see our cookies statement. 

Strictly Necessary Cookies

(Req)

These cookies are essential for the technical operation of and proper functioning of our site  and enable you to register and login, to easily move around our site, and to access secure areas. Without these cookies our site won't function properly.  

These cookies are required

Performance Cookies

Performance cookies allow us to collect aggregated and anonymous data on how our site is used, such as the number of visitors to our site, how you navigate around and the time spent on our site and also to identify any errors in functionality. These cookies also help us to improve the way our site works by ensuring that you can find what you’re looking for easily, to better understand what you are interested in and to measure the effectiveness of the content of our site. 

Marketing Cookies

These cookies allow us to advertise our products to you and allow us to pass this information on to our trusted third parties so that they can advertise our products to you on our behalf. All information these cookies collect is aggregated and therefore anonymous. No personal information is shared to third parties. Any personal information collected while using our website could be used for direct marketing from Dimension Data only.

The wolf in sheep's clothing: business email compromise and what you need to know

Blog

When an email comes from a member of your organisation’s leadership team (such as the CFO, for example) requesting certain actions be taken, would your staff question its validity or would they carry out orders due to the senior status of the sender?

If an email looks authentic—if its sender is someone important and mentions current and accurate information—employees often carry out the instructions without much question. This is one of the increasingly common ways that cyber criminals deliver malware, ransomware, and steal money directly from, even thoroughly, secure organisations.

One of the most concerning findings of our 2017 Global Threat Intelligence Report is the rise in business email compromise (BEC) attacks that have been thriving across industry. This concerning when you consider a single BEC incident results on average in a loss of approximately $67,000.

Business email compromise impacts your business in various ways:

  • Financial losses – because of fraudulent wire transfers
  • Loss of important information and records – tax statements, personal information
  • Damage to brand and reputation

Business email compromise is targeted phishing

Often when we think about cybersecurity and cyberattacks, what springs to mind is malware-type attacks where corrupted files downloaded onto a server get behind the firewall and inflict various kinds of damage on an organisation. Another type of attack that is often used to enable the malware, or damage the organisation more directly, is phishing. This style of attack can target many people in an organisation at once; often the goal is some level of access through a kind of ‘numbers game’. A receiver is asked to click on a link in an email, which takes them to a false login page where they unknowingly hand over their login details to a hacker.

Business email compromise is a form of phishing, but a highly selective and focused form of phishing, targeting one or two specific people in an organisation directly. In a typical case, the attacker impersonates a company executive and tries to convince an employee to transfer funds or important information to them.

Understanding is the first step to reducing the problem

Email is one of the most well-known entry points for cybercriminals into an organisation, and most employees start and end their days in their inboxes. This can lead to a naive or lax attitude when it comes to safe email practice, in a way that doesn’t happen in other environments; like logging into an online bank account, for instance. So, when their inbox becomes the scene of a BEC attack, your users can get caught out.

Most of your employees will be able to recognise an email with a questionable link or attachment from an unknown source and flag it as potentially dangerous. BEC is more insidious, however. As mentioned above, a BEC attack is an email from an imposter, likely using inside information or other social engineering techniques to appear as believable as possible.

Here are some tips to avoid business email compromise:

Be conscious of your information footprint

Many members of senior management in large companies are encouraged to maintain a presence on social media. Therefore, they are often tweeting and posting updates about their activities and location, etc. This gives a prospective BEC attacker ample information to target someone in your organisation. They know who the executive is, where they are in the world, how long they will be away, the purpose of the trip, who they would likely be communicating with back in the office, etc. The attacker can personalise a BEC attempt leveraging all this information, increasing the chances of success.

Awareness starts at the top

Executives need to understand that they are attractive targets of cyberattacks. As one becomes more senior in an organisation, one’s value as a target rises. So, the C-Suite need to understand when and what not to post on their social media accounts, have a protocol, like multi-factor authentication in place for business processes like money transfer or asking for sensitive information, and keep up a regular communication with their team.

Employee education and training

It’s mainly entry-level employees that are recipients of BEC attempts and so it’s imperative that they are made fully aware of the potential risks in responding without first considering its legitimacy. Making sure they are equipped with the right level of training to detect an attempt is a good step in the right direction.

Know your enemy

The people who seek to do your organisation harm via cyberattacks are investing more than you think in targeting businesses of all sizes across every industry; they are advancing with more sophisticated threats all the time. These are highly organised operations using the latest cloud technology, which means they are light and flexible and difficult to pin down. The ‘underworld economy’ has set-up a mirror image of companies in the real world and continues to evolve their cyberthreat capacity. So, it’s more important than ever to make sure your organisation, including your executives, understand the threat levels and are prepared for the dangers.

To find out more about business email compromise, the risks, implications, and recommendations, download our 2017 report and see our latest research findings on global threat intelligence.

Previous Article: Data centre networking: Five considerations Next Article: Securing digital business

You may be interested in

Man working on computers
Blog

Protect your data from the inevitable ransomware attack

To cope with this new kind of threat, your backup and recovery strategy needs to adapt.

Read blog
Rocky ocean
Blog

What I learned from hacking the Winter Olympics

I used to think that technology was the answer to all security questions, but my experience post 9/11 taught me that governance should always be the starting point for security discussions.

Read blog
Cityscape
Blog

The two-way conversation you need to have with your CEO on cybersecurity

With cyberattacks featuring regularly in mainstream news, it’s good to see that Boards and CEOs are becoming more cybersecurity conscious.

Read blog
City
Blog

Balancing risk and innovation

There’s no question that digital is the way forward. It offers tremendous benefits to your business: faster speed to market, more business intelligence and improved customer relationships.

Read blog