Business Email Compromise Losses Increase 58%

Contact Us
prevent cyber attacks

Business Email Compromise Losses Increase 58%

Business email compromise (BEC) losses are among the most expensive types of social engineering losses, and they are on the rise—increasing 58% from 2015 to 2019, according to Advisen loss data.

The median cost of a BEC loss is $764,000—significantly more expensive than other social engineering losses, which average around $580,000, according to Advisen loss data.

Between 2016 and 2019, there were nearly 170,000 BEC incidents reported to the FBI [External Link], accounting for over $26 billion in exposed dollar loss. Exposed dollar loss includes both actual and attempted losses.

In a BEC scam, cybercriminals send an email that appears to come from a known source making a legitimate request. Examples of this include a vendor company sending an invoice with an updated address or a CEO asking an assistant to purchase gift cards for employee rewards.

There are a couple common techniques used by scammers to trick victims into wiring payments or giving them important financial information. Scammers may spoof email accounts or website URLs with slight spelling variations in an attempt to trick employees into believing fake accounts are authentic. Scammers may send spear-phishing emails targeting specific individuals or organizations to trick victims into revealing confidential information that can be used in BEC scams. Cybercriminals may also use malware to infiltrate an organization’s system and gain access to legitimate conversations about billing and invoices, allowing them to send more convincing messages to their victims, according to the FBI [external link].

BEC losses have risen steadily over time to reach an all-time high in 2019. The drop in 2020 is likely due to a data lag and is not a reflection of an actual decrease of BEC losses.

The information sector has the highest severity of BEC losses of any industry in Advisen’s loss database—nearly double that of any other industry. One of the drivers of these high losses was the Rimasauskas BEC scheme [external link], in which Evaldas Rimasauskas targeted multinational internet companies and tricked employees into wiring money overseas. Over the course of his scheme, Rimasauskus convinced employees at Google and Facebook to transfer over $100 million into bank accounts that he controlled, according to Advisen loss data.

Even a single BEC loss event can cost tens of millions of dollars. This was the case for the Belgian bank Crelan, which lost around $75.8 million from a single spear-phishing email in 2016.

To prevent these types of losses, employee training is essential. Employees should know to check for spelling and grammar mistakes that could help reveal a scam. Employees should also be encouraged to reflect on whether an email is out of character for the sender and to be particularly wary of any email requesting action that contradicts company protocols.

Businesses can also help protect themselves by making email more secure. This can be done by adopting multifactor authentication—which increases security by requiring access to an account holder’s physical device in addition to their login credentials—and utilizing business email security software to help users identify BEC attempts.

Speak with Marshfield Insurance Agency for more cybersecurity guidance.

Share this post?

mfldinsureadmin

Leave a Reply

APi

Agen Bandar Togel Online-Judi Slot Online Hoki 100%

Situs Toto Togel Tersedia Togel Online Resmi Hingga Idn Slot Terpercaya

Toto Online Macau Jackpot 10 Juta Bandar Togel 4D Terpercaya

Toto Macau Daftar Bandar Togel Online Hadiah Jackpot 4D 10 Juta Terlengkap

Bandar Togel Online Hadiah 10 Juta Rupiah Coloktoto Agen Toto 4D Terpercaya

LAETOTO Daftar Togel Online Dengan Pasang Togel Deposit Pulsa

LAETOTO Situs Slot Gacor dan Togel Online 4D Terpercaya

bandar togel terpercaya

daftar toto togel online terbaik bet 100 perak

bandar togel terpercaya

Daftar Situs Togel Online Terpercaya Hadiah Togel 4D 20 Juta

situs togel online terpercaya hadiah togel 4d 20 juta

daftar judi togel online via dana terpercaya

situs toto togel online resmi terpercaya

situs bo togel toto slot 4d bandar togel bet 100 perak

toto togel lengkap bandar judi togel online dan slot gacor 4d

togel online terpercaya

bandar togel online

Agen Togel Terpercaya Terlengkap Hadiah 4D 10 Juta

Bandar Togel 4d Pasaran Judi Togel Toto Terlengkap

Agen Togel Bet 100 Perak Hadiah Togel 4D Terbesar

bo togel terpercaya

Bandar Judi Togel Online 4D Hadiah 10 Juta

toto togel

togel4d

laetoto.live

Togel Deposit Pulsa

situs togel 6d

sihokitoto.vip

Situs Toto Togel Agen Slot88 Gacor 4D Deposit Pulsa Murah

Situs Togel 4D Hadiah 10 Juta Situs Bandar Togel Online Terpercaya Daftar Situs Togel Online Deposit 10Rb

Daftar Togel Online Terpercaya Dan Terbaik Nomer 1 Tahun 2022

Bandar Togel Online Bet 100 Perak Situs Togel Terpercaya Deposit 10Rb Togel Online Terpercaya Hadiah 4D 10 Juta

GADUNTOTO DAFTAR SITUS BANDAR TOGEL SLOT ONLINE TOTO MACAU TERPERCAYA

Situs Judi Togel 4D Agen Slot888 Gacor Terlengkap Hadiah Togel Online 4D 10 Juta Terpercaya

aids2012.ucsf.edu/situs-bandar-judi-togel.html

www.standcanada.org/situs-togel-terpercaya/togel-4d

Bandar Togel Online Terlengkap Hadiah Jackpot Togel 4D 10 Juta

Situs Bandar Judi Bola Online Resmi Piala Dunia 2022 Terlengkap

Situs Togel Online Terpercaya & Slot Gacor

Situs Togel Resmi Bandar Judi Togel Online Terpercaya 2022

Bandar Togel 4D Pasaran Judi Toto Terlengkap Dan Terbesar

Daftar Situs Togel Online Terbaik Dan Bandar Toto 4D Deposit Via Pulsa

Bandar Togel Online Jackpot 4D Terbesar Dari Situs Toto Macau