Tag: business email compromise
14 articles

Spanish Police Dismantle €140 Million Cyber Fraud Ring
Meet the cybercrime ring that swindled €140 million from unsuspecting victims through cunning investment scams and business email hacks - but thanks to a slick operation by Spanish Police, its masterminds have been brought to justice. Four key players were arrested across Spain, Portugal, and Panama, dealing a major blow to this industrial-scale cybercrime network.

Meta Disrupts Phishing Campaign Targeting Facebook Business Users
Watch out for phishing scams targeting Facebook Business users - red flags include broken graphics, suspicious links, and unsolicited emails promising exciting opportunities. Experts warn that cybercriminals are getting sneaky, using legitimate-looking emails and Messenger chatbots to trick victims into taking action.

Phishing Kit Unveils Sophisticated BEC-as-a-Service Capabilities
Meet ARToken, a sophisticated phishing kit that's redefining the threat landscape with its Business Email Compromise (BEC)-as-a-Service capabilities, allowing attackers to launch highly targeted and convincing scams. This advanced platform is a game-changer, offering a complete BEC operations environment that's far more complex than your average phishing kit.

Business Email Compromise Attacks Evolve with AI-Powered Tactics
Business Email Compromise attacks are no ordinary email scams - they're sophisticated, organized operations that now utilize AI-powered tactics to deceive and defraud. A recent underground forum thread reveals the inner workings of modern BEC schemes, from initial malware attacks to sending fake invoices.

WhatsApp Phishing Attack Exploits Business Docs to Hack PCs Globally
Beware of WhatsApp messages from familiar contacts with suspicious attachments - they might be part of a global phishing attack that's spreading rapidly across 11 countries, disguising malware as legitimate business documents. These cunning messages contain hidden threats that can hijack your PC, all thanks to a simple click on a malicious file.

Deepfake Voice Attacks Expose Vulnerabilities in Corporate Defenses
With just three seconds of a CEO's voice online, your company is vulnerable to a deepfake voice attack - and it only takes one convincing call to compromise your defenses, as seen in a string of high-profile heists. Make sure your team knows how to spot and stop these sophisticated scams before it's too late.

Cybercrime Shifts to Caller-as-a-Service Model
US elderly citizens alone lost a staggering $3.4B in 2023 to phone-based scams, highlighting the alarming rise of a highly organized and profitable fraud economy. This Caller-as-a-Service model has made it easier for scammers to specialize and scale their operations, putting even more people at risk.

Zephyr Energy Hit by $900K Cyber Heist via Contractor Payment Redirect
Zephyr Energy plc lost a staggering £700,000 in a shocking cyber heist, where attackers cleverly redirected a single payment meant for a contractor into their own account. This brazen attack serves as a stark reminder of the devastating consequences of cyber risk.

Cybercrime Inflicts Record $21 Billion Loss on US Citizens
Last year, US citizens suffered a staggering $21 billion loss to cybercrime, a record that raises a crucial question: is the convenience of digital life worth the growing risk of fraud and theft? The alarming figure is largely driven by investment scams, business email compromise, tech support fraud, and data breaches.

AI Deepfake Stunning Surge: Identity Fraud Worsens
Identity fraud has entered a new era: generative AI churns out eerily lifelike voices and videos that let scammers impersonate bosses, loved ones and officials with uncanny accuracy. As these deepfake-enabled schemes become cheaper and harder to spot, individuals and businesses must rethink how they verify trust.

payment diversion fraud: Must-Have Critical Alert
Worried that the bank details in that email really belong to your solicitor? The NCA warns house buyers are being hit by payment diversion fraud—sometimes losing over £80,000—so always independently verify payment instructions and use secure channels to protect your sale.

African-based scam syndicates: Exclusive Risky Takedown
Interpol’s Operation Contender 3.0 led to 260 arrests across Africa, disrupting the networks behind romance, investment and business-email scams. It’s a powerful coordinated strike — but experts warn arrests must be paired with better tech, policy and victim support to truly curb these adaptable, cross-border fraud rings.

CRM platform Risky Breach: Stunning Contact Exposure
Workday says its core systems were untouched, but a third-party CRM was breached — exposing business contacts that could fuel phishing, BEC and credential-stuffing attacks. Treat contact data as compromised: tighten MFA, audit integrations, and warn teams to watch for targeted social engineering.

Ghanaian romance fraud: Shocking Devastating $100M Scam
Imagine thinking you’ve found love—only to learn it’s a $100M scam; the indictment of four Ghanaian nationals exposes how online romance can be weaponized, devastating lives and forcing urgent action on cross‑border fraud and digital trust.