Security Awareness Training Blog

CEO Fraud Blog

News about the latest CEO fraud attacks. See how the bad guys actually do this and how much money companies lose to this type of scam.

View Topics

Funds Transfer Fraud Has Increased 35% Since the Onset of COVID-19

Sep 14, 2020 10:49:30 AM By Stu Sjouwerman
With reported losses from thousands of dollars to well over $1 million, funds transfer fraud represents 27% of cyber insurance claims in 2020.
Continue Reading

Business Email Compromise attacks increase 67% Leading to Fraud, Ransomware, and Data Breaches

Sep 14, 2020 10:34:13 AM By Stu Sjouwerman
Involved in 60% of cybersecurity insurance claims, Business Email Compromise (BEC) is growing in interest by cybercriminals as the initial malicious action as part of a larger attack.
Continue Reading

CEO Fraud Wire Transfer Losses Soar 48% in Q2 2020

Sep 1, 2020 10:39:48 AM By Stu Sjouwerman
Business email compromise attacks—aka CEO Fraud— have taken shape this year, and according to Agari wire transfer losses have significantly increased by 48% in Q2 2020. The average losses ...
Continue Reading

Cybercriminals Target Execs in Microsoft 365 Credential Attack to Launch Internal BEC Scams

Aug 11, 2020 9:30:40 AM By Stu Sjouwerman
A new phishing attack spotted in the wild by security researchers at Trend Micro demonstrates how compromised data in an initial cyberattack is purposed in subsequent attacks.
Continue Reading

Legitimate Accounts for Illegitimate Business Email Compromise

Aug 11, 2020 8:28:12 AM By Stu Sjouwerman
Cybercriminals frequently use email accounts from legitimate services like Gmail to carry out business email compromise (BEC) attacks, Help Net Security reports. Researchers at Barracuda ...
Continue Reading

BEC is the Largest Cyber Threat to UK Sports Entities

Jul 24, 2020 8:55:13 AM By Stu Sjouwerman
The UK’s National Cyber Security Centre (NCSC) released a new report revealing that sports organizations are more than twice as likely to suffer a cyberattack than organizations in other ...
Continue Reading

Business Email Compromise Attacks Focused on Invoice Fraud Surge by 75%

Jul 2, 2020 9:59:40 PM By Stu Sjouwerman
As attacks on the C-Suite decline, new data shows that employees in finance department roles are critical to the success of shifts in attack campaign strategy.
Continue Reading

BEC Isn't Back; It Never Left

Jun 16, 2020 8:27:32 AM By Stu Sjouwerman
Business email compromise (BEC) attacks aren’t new, but they’re growing increasingly effective, according to Zeljka Zorz at Help Net Security. Zorz cites an article from BakerHostetler, ...
Continue Reading

Why BEC Punches Above Its Weight

Jun 9, 2020 8:27:09 AM By Stu Sjouwerman
Business email compromise (BEC) attacks are particularly insidious because they don’t use malware payloads or malicious URLs. That’s a reminder from Evan Reiser, CEO and co-founder of ...
Continue Reading

What to do About BEC?

May 28, 2020 8:23:39 AM By Stu Sjouwerman
Funds transfer fraud, also known as business email compromise (BEC), is a much more widespread problem than it seems, according to lawyers at Ice Miller LLP. The attorneys believe this ...
Continue Reading

Cloud-based Business Email Compromise

Apr 8, 2020 8:27:11 AM By Stu Sjouwerman
The FBI’s Internet Crime Complaint Center (IC3) published an alert warning that criminals are exploiting cloud-based email services to carry out business email compromise (BEC) attacks. ...
Continue Reading

New Sophisticated “Exaggerated Lion” BEC Check Scam Uses Mules to Cash Out

Mar 3, 2020 8:36:45 AM By Stu Sjouwerman
You may wonder exactly how BEC scammers see a payday. New insight from security vendor Agari documents how a secondary check scam dupes unsuspecting victims to help.
Continue Reading

Spear Phishing Tops the Canadian Anti-Fraud Center’s List of Attacks

Feb 24, 2020 5:13:16 PM By Stu Sjouwerman
The latest data out of the Canadian Government points out how targeted spear phishing fraud attacks via email are the most lucrative method of attack for cybercriminals in 2019.
Continue Reading

A Single BEC Gang is Launching Thousands of Attacks Per Year

Feb 24, 2020 8:22:44 AM By Stu Sjouwerman
A unique cybercriminal group launched business email compromise (BEC) attacks against more than 2,100 companies in the US between April and August 2019, according to researchers at Agari. ...
Continue Reading

Cyberattacks in 2019 Cost over $3.5 Billion in Victim Losses with Business Email Compromise Taking in Half

Feb 14, 2020 8:35:19 AM By Stu Sjouwerman
The FBI’s annual year-in-review breaks down how 467,000 cyber attacks succeeded in taking consumers and businesses alike for billions of dollars.
Continue Reading

FBI Internet Crime Report Released: The Evolving Threat and Importance of Reporting

Feb 12, 2020 10:42:48 AM By Stu Sjouwerman
The FBI's Internet Crime Complaint Center released its 2019 Internet Crime Report, and by no surprise the bad guys and new scams show no signs of stopping anytime soon. Last year the ...
Continue Reading

5 Tips to Prevent CEO Fraud

Jan 27, 2020 8:34:51 AM By Stu Sjouwerman
Every day, employees are regularly receiving spoofed emails. Even C-level executives are receiving fraudulent requests to transfer money or provide sensitive information. This form of ...
Continue Reading

Domain-Impersonation Increases by 400% as part of Conversational Hijacking Attacks

Jan 23, 2020 4:13:29 PM By Stu Sjouwerman
The latest data from security vendor Barracuda suggests that attackers heavily rely on lookalike domains as part of BEC scams that can result in CEO fraud, malware infection, or ransom.
Continue Reading

Hackers Request Aging Reports to Identify Their Next CEO Fraud Victims for Them

Jan 16, 2020 11:57:48 AM By Stu Sjouwerman
Rather than attempt to hack user credentials and gain access to Accounts Payable applications, hackers are now impersonating the CFO and obtaining all the detail they need to launch a ...
Continue Reading

Fast Work By Cops Recovers $710,000 After CEO Fraud Attack Hits Long Island County Government

Jan 14, 2020 6:33:48 AM By Stu Sjouwerman
Finally some good news. Newsday reports that in record time, Nassau County, New York, recovered $710,000 that was transferred to scammers who were impersonating an existing county vendor.
Continue Reading
Subscribe

Search Our Blog


Free Cybersecurity Awareness Month Resource Kit

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews