Back Issues This Week → Current Issue → Popular →

Business Email Compromise (BEC) is a targeted form of cybercrime where attackers impersonate trusted people or organizations to trick you into sending money or sharing sensitive data. Unlike broad phishing campaigns, a BEC attack is usually quiet and precise. It looks like a normal company email because it relies on social engineering, not obvious malware.

In a typical BEC incident, attackers spoof addresses, take over real email accounts, or register lookalike domains. Their objective is generally the same: Get someone inside your business to approve a payment, change bank details, or share information that should never leave the organization.