Business email compromise (BEC) – also known as email account compromise (EAC) – is one of the most financially damaging cybercrimes perpetuated online. BEC fundamentally exploits the fact that so many of us rely on email to conduct business – both personal and professional.
In a BEC scam, cybercriminals send their chosen targets an email that appears to come from a known and trusted source making a legitimate request, as in these examples:
- Your boss (who is on vacation) emails you to ask you to purchase a number of gift cards to send out to company employees as employee rewards. Your boss then asks for you to email her the serial numbers ‘as a safety measure.’
- A company your firm works with regularly sends you an email notifying you of an updated mailing address, or a change in Accounts Payable email address.
- After you post news of your home escrow closing on social media, you get an email from your title company with ‘updated instructions’ on how to wire them your down payment.
All of the above examples and other variations happen hundreds (maybe thousands) of times per year to real people all over the world. All of the above messages may look genuine, but turn out to be fake, painstakingly crafted by cybercriminals who were monitoring employee social media or official company forum posts for tidbits of information they can use to swindle someone, somewhere, out of money.
How can you and your company avoid becoming a victim of a BEC scam? Join BlackBerry for an informative webinar on safeguarding your workforce from business email compromise and other business critical services for remote workers.
October 27, 2020
8 AM PT | 11 AM ET | 4 PM BST | 5 PM CEST
In the webinar, Ryan Chapman, BlackBerry Principal Consultant, Incident Response & Digital Forensics, will walk through:
- Tips for securing your business email
- Business email compromise (BEC) threats and how to avoid them
- The evolution of phishing attacks from malware deployment to credential theft
- How BEC attacks should be analyzed and reported
- How a BEC Assessment can help you understand your email-based threat landscape
Don’t miss this valuable presentation on ways to address the threats facing remote workers. Register for this webinar now.
About the Speaker:
Principal Consultant, Incident Response & Digital Forensics, BlackBerry
In his role as a Principal Consultant for the BlackBerry Incident Response and Forensics team, Ryan Chapman is responsible for the execution and analysis of incident response engagements and forensic work. He also provides consulting services to clients, including digital forensics, incident response investigation and containment, malware reverse engineering, compromise assessments, tabletop exercises, and other security services.
Ryan has seven years of experience in incident response and forensics. During his career, Ryan has handled incidents from inception all the way through remediation. His capabilities include reviewing log traffic, researching domains and IPs, hunting through log aggregation utilities, sifting through PCAPs, analyzing malware, and performing host and network forensics. Additionally, Ryan has led multiple advanced-persistent-threat-based incidents. Prior to moving to security, Ryan worked as a technical trainer for over five years.