it.tmcnet

From Reactive to Proactive: Using AI to Hunt BEC in Real Time

Business Email Compromise (BEC) attacks are notoriously hard to catch. Along with the next wave of AI-crafted phishing emails, these fall in the “uncatchable” category because they offer no giveaway ...
CSOonline

BEC groups are using Google Translate to target high value victims

The threat actors extensively research their target’s responsibilities and relationship with the CEO and create spoofed email accounts that look like real ones. Abnormal Security has identified two ...
CSOonline

8 things that should be in a company BEC policy document

A business email compromise policy can guide and allow employees to feel safer by following pre-defined rules. Here are eight things that should be in an organization’s BEC policy. Business email ...
Fast Company

How AI is helping to advance CEO fraud and BEC attacks

The Fast Company Executive Board is a private, fee-based network of influential leaders, experts, executives, and entrepreneurs who share their insights with our audience. BY Stu Sjouwerman Businesses ...
Bleeping Computer

Microsoft: OAuth apps used to automate BEC and cryptomining attacks

Microsoft warns that financially-motivated threat actors are using OAuth applications to automate BEC and phishing attacks, push spam, and deploy VMs for cryptomining. OAuth (short for Open ...