What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in Business Email Compromise

Major BEC Phishing Ring Cracked Open with 3 Arrests

25 Nov, 2020 arrests, BEC, BEC attacks, Business Email Compromise, cybercriminals, global attacks, Government, interpol, Malware, Nigeria, Scam, Security News, social engineering, Web Security 0 Comments 0

Some 50,000 targeted victims have been identified so far in a massive, global scam enterprise that involves 26 different malwares. Three men suspected of participating in a massive business email compromise (BEC) ring have been arrested in Lagos, Nigeria. A joint INTERPOL, Group-IB and Nigeria Police Force cybercrime investigation resulted . . . Read more

Google Services Weaponized to Bypass Security in Phishing, BEC Campaigns

20 Nov, 2020 armorblox, BEC attacks, Business Email Compromise, bypass, Cloud Security, Cyberattacks, email gateways, email security, Firebase, google docs, Google Forms, Google Services, microsoft teams, Phishing, Security News, social engineering, Web Security 0 Comments 0

Attackers exploiting an array of Google Services, including Forms, Firebase, Docs and more to boost phishing and BEC campaigns. A spike in recent phishing and business email compromise (BEC) attacks can be traced back to criminals learning how to exploit Google Services, according to research from Armorblox. Social distancing has . . . Read more

Wisc. GOP’s $2.3M MAGA Hat Debacle Showcases Fraud Concerns

30 Oct, 2020 BEC, Business Email Compromise, cyberattack, Cyberattacks, cybercriminal, Election, election security, Fraud, Hacks, hats, maga, MAGA hat invoices, MAGA hat vendors, Phishing, politics, presidential election, Security News, Trump campaign, Web Security, Wisconsin GOP, Wisconsin Republicans 0 Comments 0

Scammers bilked Wisconsin Republicans out of $2.3 million in a basic BEC scam — and anyone working on the upcoming election needs to pay attention. The Wisconsin Republican party’s war chest is lighter by $2.3 million after scammers posing as MAGA-hat vendors were able to spoof invoices in what . . . Read more

Rapper Scams $1.2M in COVID-19 Relief, Gloats with ‘EDD’ Video

19 Oct, 2020 arrested, BEC, big wizza, Business Email Compromise, CARES Act, EDD, Fontrell Antonio Baines, Fraud, Government, Identity theft, Nuke Bizzle, Pandemic Unemployment insurance, Phishing, phishing scam, Privacy, PUA, scattered canary, Security News, tax data, Tax Fraud, Web Security 0 Comments 0

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

BEC Attacks: Nigeria No Longer the Epicenter as Losses Top $26B

14 Oct, 2020 2020 losses, ACID, Agari, average wire transfer, BEC, BEC attacks, Business Email Compromise, cybercriminals, global attacks, money mules, Most Recent ThreatLists, Nigera, Scam, Security News, social engineering, Web Security 0 Comments 0

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Why Web Browser Padlocks Shouldn’t Be Trusted

30 Sep, 2020 Anti-Phishing Working Group, Apple, Business Email Compromise, certificate, Cryptography, Extended Validation Certificates, Firefox, google, https, Security News, web browser, Web Security 0 Comments 0

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

BEC Wire Transfers Average $80K Per Attack

02 Sep, 2020 Anti-Phishing Working Group, APWG, average transaction amounts, BEC, Business Email Compromise, cosmic lynx, gift cards, Hacks, Most Recent ThreatLists, Phishing, q2 2020, Security News, the report, Web Security 0 Comments 0

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Attackers Horn in on MFA Bypass Options for Account Takeovers

07 Aug, 2020 abnormal security, account takeover, Breach, Business Email Compromise, Cloud Security, conditional access, Hacks, legacy applications, MFA bypass, Mobile Security, multifactor authentication, Office 365, Privacy, Security News, Vulnerabilities, Web Security 0 Comments 0

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.