Skip to main content

Tag: business email compromise

14 articles

Law enforcement officials gather around a table in a brightly-lit briefing room, signaling disruption of illicit activity.

Spanish Police Dismantle €140 Million Cyber Fraud Ring

Meet the cybercrime ring that swindled €140 million from unsuspecting victims through cunning investment scams and business email hacks - but thanks to a slick operation by Spanish Police, its masterminds have been brought to justice. Four key players were arrested across Spain, Portugal, and Panama, dealing a major blow to this industrial-scale cybercrime network.

Analyst 207
Concerned business owner sits at desk, scrutinizing suspicious email on smartphone.

Meta Disrupts Phishing Campaign Targeting Facebook Business Users

Watch out for phishing scams targeting Facebook Business users - red flags include broken graphics, suspicious links, and unsolicited emails promising exciting opportunities. Experts warn that cybercriminals are getting sneaky, using legitimate-looking emails and Messenger chatbots to trick victims into taking action.

Analyst 207
Darkened cityscape at dusk with a brightly-lit laptop on a cluttered table.

Phishing Kit Unveils Sophisticated BEC-as-a-Service Capabilities

Meet ARToken, a sophisticated phishing kit that's redefining the threat landscape with its Business Email Compromise (BEC)-as-a-Service capabilities, allowing attackers to launch highly targeted and convincing scams. This advanced platform is a game-changer, offering a complete BEC operations environment that's far more complex than your average phishing kit.

Analyst 207
Cramped, dimly lit workspace with scattered laptop and papers, suggesting a makeshift operation.

Business Email Compromise Attacks Evolve with AI-Powered Tactics

Business Email Compromise attacks are no ordinary email scams - they're sophisticated, organized operations that now utilize AI-powered tactics to deceive and defraud. A recent underground forum thread reveals the inner workings of modern BEC schemes, from initial malware attacks to sending fake invoices.

Analyst 207
Cluttered office desk with desktop computer showing WhatsApp notification, surrounded by financial papers and documents.

WhatsApp Phishing Attack Exploits Business Docs to Hack PCs Globally

Beware of WhatsApp messages from familiar contacts with suspicious attachments - they might be part of a global phishing attack that's spreading rapidly across 11 countries, disguising malware as legitimate business documents. These cunning messages contain hidden threats that can hijack your PC, all thanks to a simple click on a malicious file.

Analyst 207
Finance director on video call with multiple faces on screen, looking concerned.

Deepfake Voice Attacks Expose Vulnerabilities in Corporate Defenses

With just three seconds of a CEO's voice online, your company is vulnerable to a deepfake voice attack - and it only takes one convincing call to compromise your defenses, as seen in a string of high-profile heists. Make sure your team knows how to spot and stop these sophisticated scams before it's too late.

Analyst 207
Person sitting at desk with phone, surrounded by computer monitors and notes, in a dimly lit room with a cityscape visible…

Cybercrime Shifts to Caller-as-a-Service Model

US elderly citizens alone lost a staggering $3.4B in 2023 to phone-based scams, highlighting the alarming rise of a highly organized and profitable fraud economy. This Caller-as-a-Service model has made it easier for scammers to specialize and scale their operations, putting even more people at risk.

Analyst 207
Dark office with spotlight on laptop, ghostly hand hovering over keyboard.

Zephyr Energy Hit by $900K Cyber Heist via Contractor Payment Redirect

Zephyr Energy plc lost a staggering £700,000 in a shocking cyber heist, where attackers cleverly redirected a single payment meant for a contractor into their own account. This brazen attack serves as a stark reminder of the devastating consequences of cyber risk.

Analyst 207
Person sits in dimly lit room amidst shattered glass and torn paper, with broken smartphone and laptop displaying cityscape…

Cybercrime Inflicts Record $21 Billion Loss on US Citizens

Last year, US citizens suffered a staggering $21 billion loss to cybercrime, a record that raises a crucial question: is the convenience of digital life worth the growing risk of fraud and theft? The alarming figure is largely driven by investment scams, business email compromise, tech support fraud, and data breaches.

Analyst 207
AI Deepfake Stunning Surge: Identity Fraud Worsens

AI Deepfake Stunning Surge: Identity Fraud Worsens

Identity fraud has entered a new era: generative AI churns out eerily lifelike voices and videos that let scammers impersonate bosses, loved ones and officials with uncanny accuracy. As these deepfake-enabled schemes become cheaper and harder to spot, individuals and businesses must rethink how they verify trust.

Analyst 207
payment diversion fraud: Must-Have Critical Alert

payment diversion fraud: Must-Have Critical Alert

Worried that the bank details in that email really belong to your solicitor? The NCA warns house buyers are being hit by payment diversion fraud—sometimes losing over £80,000—so always independently verify payment instructions and use secure channels to protect your sale.

Analyst 207
African-based scam syndicates: Exclusive Risky Takedown

African-based scam syndicates: Exclusive Risky Takedown

Interpol’s Operation Contender 3.0 led to 260 arrests across Africa, disrupting the networks behind romance, investment and business-email scams. It’s a powerful coordinated strike — but experts warn arrests must be paired with better tech, policy and victim support to truly curb these adaptable, cross-border fraud rings.

Analyst 207
CRM platform Risky Breach: Stunning Contact Exposure

CRM platform Risky Breach: Stunning Contact Exposure

Workday says its core systems were untouched, but a third-party CRM was breached — exposing business contacts that could fuel phishing, BEC and credential-stuffing attacks. Treat contact data as compromised: tighten MFA, audit integrations, and warn teams to watch for targeted social engineering.

Analyst 207
Ghanaian romance fraud: Shocking Devastating $100M Scam

Ghanaian romance fraud: Shocking Devastating $100M Scam

Imagine thinking you’ve found love—only to learn it’s a $100M scam; the indictment of four Ghanaian nationals exposes how online romance can be weaponized, devastating lives and forcing urgent action on cross‑border fraud and digital trust.

Analyst 207