Business Email Compromise

Bericht: Business-Email-Compromise-Angriffe abwehren

Druckfreundlich, PDF & E-Mail

Business email compromise (BEC) makes up a comparatively small percentage of the overall number of spear phishing attacks, but they pack a punch. According to a recent report from FBI’s Internet Crime Complaint Center, complaints filed between June 2016 and July 2019 about business email compromise had a total exposed dollar loss of more than $26 billion.

Barracuda researchers recently took a closer look at these highly targeted and costly attacks, uncovering the latest tactics used by cybercriminals and the steps you can take to help defend your business. They share their findings in the new report Spear Phishing: Top Threats and Trends Vol. 3 – Defending Against Business Email Compromise Attacks.

The report takes an in-depth look at how BEC attacks use impersonation, strategic targeting, careful timing, and social engineering to steal money or personally identifiable information. It also covers ways that organizations can use advanced detection techniques, security awareness training, and other solutions to successfully prevent these attacks.

Holen Sie sich jetzt Ihren kostenlosen Bericht.

According to the FBI, complaints filed between June 2016 and July 2019 about #BEC had a total exposed dollar loss of more than $26 billion. #EmailSecClick To Tweet

Fresh insights on BEC attacks

Barracuda’s research reveals some interesting information about business email compromise and the tactics attackers are using to make their emails convincing and trick their victims. Highlights from the report include:

  • 91 Prozent der Business-Email-Compromise-Angriffe finden an Wochentagen statt, wobei viele während der typischen Geschäftszeiten der Zielorganisation verschickt werden, um sie überzeugender zu machen.
  • Der durchschnittliche Angriff zielt dabei auf maximal sechs Mitarbeiter ab; 94,5 Prozent aller Angriffe zielen auf weniger als 25 Personen ab.
  • 85 Prozent der Business-Email-Compromise-Angriffe sind dringende Anfragen, die auf eine schnelle Reaktion abzielen.
  • Business-Email-Compromise-Angriffe weisen hohe Klickraten auf. Eine von 10 Spear-Phishing-E-Mails bringt einen Benutzer erfolgreich dazu, zu klicken. Diese Zahl verdreifacht sich bei E-Mails, bei denen sich der Absender als jemand aus der Personalabteilung oder der IT-Abteilung ausgibt.
  • In den vergangenen 12 Monaten betrug der durchschnittliche Verlust pro Organisation aufgrund von Spear-Phishing-Angriffen 270.000 Dollar.
One in 10 #spearphishing emails successfully tricks a user into clicking. That number triples for emails that impersonate someone from HR or IT. #EmailSec Click To Tweet

Get your copy of Spear Phishing: Top Threats and Trends Vol. 3 – Defending Against Business Email Compromise Attacks now to see the full results for yourself and get expert advice on how to defend against these types of attacks. Staying informed and taking the proper precautions can help you keep your organization protected from BEC attacks.

Holen Sie sich jetzt Ihren kostenlosen Bericht.

Nach oben scrollen
Twittern
Teilen
Teilen