Business Email Compromise: New Shift in BEC Threat Landscape Puts CISOs on Notice

BEC: West Africa Gets ‘Cosmic’ Competition

If Cosmic Lynx is any indication of the shockwave heading CISOs’ way, existing corporate playbooks for fighting advanced email threats are in for some serious jostling.

CISOs and the Ever-Expanding Attack Surface

Pulling off an M&A scam like Cosmic Lynx has demonstrated requires weeks or months of savvy reconnaissance, methodical social engineering, and a robust support infrastructure. All easily justified by the potential for stratospheric payouts. And all easily achievable by Eastern European cybercrime organizations.

The Identity Imperative

Factor in the availability of harvested email login credentials and the potential for BEC schemes to be launched from compromised email accounts belonging to internal executives or outside partners and the risks grow exponentially.

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Agari

Agari

Agari is the Trusted Email Identity Company™, protecting companies and people from phishing and socially-engineered email attacks.