What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in BEC

Abnormal Security: Microsoft Tops List of Most-Impersonated Brands in Phishing Exploits

Image: Timon/Adobe Stock A significant portion of social engineering attacks, such as phishing, involve cloaking a metaphorical wolf in sheep’s clothing. According to a new study by Abnormal Security, which looked at brand impersonation and credential phishing trends in the first half of 2023, Microsoft was the brand most abused . . . Read more

Israel-based threat actors show growing sophistication of email attacks

Abnormal Security is tracking cybercriminals from an unusual location for business email compromises who are using sophisticated spoofing to spur payments for fake acquisitions. Image: Getty Images/iStockphoto/Balefire9 A threat group based in Israel is behind attacks in recent weeks, according to a report from email security firm Abnormal Security. The . . . Read more

S3 Ep42: Viruses, Nightmares, patches, rewards and scammers [Podcast]

by Paul Ducklin [00’38”] Learning from computer virus history.  [02’26”] The PrintNightmare saga continues.  [05’27”] Apple puts out a patch, but doesn’t say why.  [08’12”] Snitch on a crook and earn $10 million.  [17’50”] Scammars do grammer and speeling correctly.  [25’12”] And the Business Email Compromise that wasn’t. With Doug Aamoth and Paul Ducklin. Intro and outro music by Edith Mudge. . . . Read more

Phishing tricks that really work – and how to avoid them

Co-authored by Juan Badell and Russell Petrich As two people for whom creating phishing emails constitutes legitimate employment (we are on the product team behind the Sophos Phish Threat phishing simulation service) we know we’re in the minority. Like our not-so-lawful counterparts, we spend our days using social engineering techniques . . . Read more

Major BEC Phishing Ring Cracked Open with 3 Arrests

Some 50,000 targeted victims have been identified so far in a massive, global scam enterprise that involves 26 different malwares. Three men suspected of participating in a massive business email compromise (BEC) ring have been arrested in Lagos, Nigeria. A joint INTERPOL, Group-IB and Nigeria Police Force cybercrime investigation resulted . . . Read more