Insight

Mitigating the risk of Business Email Compromise attacks

By:
Jack Halstead
insight featured image
Business Email Compromise (BEC) is a rapidly growing cyber threat, across all Australian business sectors.
Contents

According to the Australian Cyber Security Centre, BEC is one of the most commonly reported cybercrime types in Australia, with businesses across various sectors falling victim to it. In 2022, the ACSC reported financial losses of over $98m due to BEC compromises.

It is essential to understand the evolving threat landscape and develop strategies to mitigate the risk of BEC, including identifying the different types of BEC and how respond appropriately to incidents. Here are some key points to consider.

Types of BEC

BEC can take various forms, such as payment diversion, CEO fraud, phishing attacks and M365 compromise. Payment diversion is the most common type of BEC, where attackers send fraudulent invoices to businesses with instructions to transfer money to a Threat Actor account.

Targeted sectors

The most commonly targeted industries in Australia include finance, real estate, and professional services. If your organisation operates in one of these sectors, it is essential to take extra precautions to protect against BEC.

Prevention measures

Prevention is better than cure when it comes to BEC. Some essential measures to consider include staff education and training on how to identify and respond to BEC, strong email security protocols for onsite and cloud infrastructure and conducting regular audits of processes and controls.

Incident Response Plan

It is important to have a robust incident response plan in place that outlines the steps to be taken in case of an incident. The plan should include procedures for isolating affected systems, notifying stakeholders, and preserving evidence for investigations.

Collaborate with industry bodies

Collaboration can help keep your organisation informed about the latest BEC trends and best practices. Some organisations to consider partnering with include the Australian Cyber Security Centre and the Australian Signals Directorate.

BEC is a constant threat to businesses in Australia. Our incident response team can help you become aware of the evolving threat landscape, develop effective strategies to mitigate risk and investigate any active compromises. By implementing preventive measures, your organisation can minimise the impact of BEC and protect against financial loss and reputational damage.

Learn more about how our Cyber resilience services can help you
Learn more about how our Cyber resilience services can help you
Visit our Cyber resilience page