What does BEC stand for in cyber security?

In cyber security, BEC stands for business email compromise.

What is the definition of business email compromise (BEC)?

Business email compromise (BEC) involves impersonating a genuine email account to defraud companies by exploiting trust. It targets employees with financial authority to transfer funds.

How does business email compromise (BEC) work?

Business email compromise (BEC) scams start with reconnaissance of targets, followed by crafting a spear-phishing email that exploits trust to obtain money or information.

What are the different types of business email compromise (BEC) attacks?

There are many different types of business email compromise (BEC) attacks, including Account Takeover, CEO Fraud, Credential Theft, and Invoice Fraud.

How do you prevent and protect against business email compromise (BEC)?

A complete email security solution is necessary to prevent business email compromise (BEC) attacks, as they can bypass signature-based defenses and use human-targeted tactics like social engineering.

Why IRONSCALES
OUR VALUE

Protect Better

Gain protection against advanced email attacks like BEC, ATO, social engineering, and more

Simplify Operations

Turn hours-a-day to minutes-a-month combatting phishing with customizable security automation

Empower Your Org

Triple your org's email security awareness with real-world phishing simulation testing and training
CUSTOMERS

Customers

Check out the benefits provided to our customers and their stories

Case Studies

Explore inspiring success stories from our 13,000+ global customers

Reviews

Uncover honest reviews with authentic insights from Gartner, G2, Capterra, and more
NEWS

Press

Read our latest press releases, news publications, and media highlights

Awards

Explore our awards and industry recognition achievements
Press: New Research

New Osterman study reveals orgs with high confidence still lack capabilities against QR code attacks

Case Study: Webhelp

Learn how Webhelp saved over 450 SecOp hours and is protecting 36,000 mailboxes

Awards: INC. 5000

IRONSCALES earns 'Fastest Growing Email Security Company' for 3rd straight year
Platform
Spring '24 Software Release! Check out our new deep image-based detection, GWS capabilities, and more. Explore the new additions
CAPABILITIES

Inbound Email Protection

Get Adaptive AI email security against advanced attacks missed by other security controls

Account Takeover Protection

Eliminate the risk of ATO with advanced prevention, detection, and response

Image-Based Attack Protection

Protect your organization from image-based attacks like malicious QR codes

SOC Automation

Put SecOps workloads on auto-pilot with automated email remediation and more
Phishing Simulation Testing

Send your employees customized simulations built from real-world threats

Security Awareness Training

Build a security-centric culture with automated personalized awareness campaigns

Crowdsourced Threat Intelligence

Leverage insights from 20,000+ security analysts in our community for email remediation

Collaboration Tool Protection

Protect your collaboration tools including Microsoft Teams® from advanced threats
Take an Interactive Platform Tour
TECHNOLOGY

Adaptive AI Engine

Learn how we level up our AI with advanced ML models and Human Insights

Human Insights

See how we uniquely enhance our adaptive AI with real-time Human Insights

Generative AI

Discover how we use Gen-AI, large language models, and techniques for email security

Ecosystem Integrations

Maximize your existing security tools with our seamlessly integrated platform
Take an Interactive Platform Tour
Solutions
USE CASE

BEC & Executive Impersonation

Stop advanced attacks like BEC, VEC, and VIP impersonation

Advanced Malware/URL Attacks

Continuously protect against malicious links and attachments

Credential Harvesting

Block attackers from stealing your sensitive business data

Account Takeover Attacks

Prevent, detect, and respond to ATO attacks in real time

QR Code Attacks

Decipher image-based attacks from weaponized QR codes

Generative AI Attacks

Safeguard your organization against GPT-crafted attacks

Phishing Simulation Testing

Test your employees with real-world email attacks

Security Awareness Training

Build a security-first organization with integrated SAT campaigns

Get A FREE Email Health Scan
BUSINESS INITIATIVE

M365 Augmentation

GWS Augmentation

SEG Augmentation

SEG Replacement

SOC Automation

BY ROLE

IT/Security Leader

IT/Security Operator

Executive

BY PLATFORM

Microsoft 365

Google Workspace

Microsoft Teams
Learn
New Report! Osterman Research releases their 2024 findings on Image-based/QR Code Attacks. Read the report
LEARN

Blog

Stay informed with our insights and updates

Guides

Explore our multi-chapter email security guides

Glossary

Decode cybersecurity jargon with our glossary

Resource Library

Rich content hub including whitepapers, reports, and more

Get Started

Get started today with a 14-day free trial

Platform Tour

Navigate our platform directly with an interactive guided tour

Engineering Corner

Explore articles and lessons from our R&D team members

CONNECT

Events

View our upcoming in-person and virtual events

LinkedIn

Join the evolving email security discourse with us on LinkedIn

Newsletter

Join our LinkedIn newsletter for security news and best practices
See all resources
FEATURED

Email Security in the Age of AI

Understand the role of AI in fortifying defenses against evolving threats.

QR Code Phishing

QR codes serve as a new bypass method to evade detection.

The ABCs of MFA

MFA is your digital doorman that keeps the malicious actors at bay.
Phishing Prevention

Dive into our complete 13-chapter guide on phishing prevention best practices

Spear Phishing

Understand the inner workings of highly specialized phishing tactics and how to stop them

Voice Phishing

See how attackers leverage new methods and channels to defraud businesses
Partner
BY TYPE

Resellers

Elevate your business with exclusive reselling opportunities

MSPs / MSSPs

Unlock powerful email security capabilities for your end clients

Technology Partners

View our industry-leading technology partners

ENGAGE

Become Partner

Apply to become an IRONSCALES partner today

Partner Portal

Check out valuable tools and resources for partners

Become a Partner
Partner with IRONSCALES Today
Pricing
Get a Demo

Get a Demo

What is Business Email Compromise?

Business Email Compromise (BEC) is a leading phishing threat for enterprise organizations. According to Osterman Research in their new report, 93% of organizations experienced BEC attack variants that bypass traditional security defenses.

Download the BEC attacks report

Business Email Compromise (BEC) Explained

Business email compromise is a type of targeted phishing (spear phishing) in which a threat actor either accesses or mimics a genuine business email account to defraud the business. This tactic relies on exploiting the assumed trust that victims have in emails coming from what appear to be genuine sources. Often, these scams target employees working in financial departments or executives who have the power to transfer money from business accounts to bank accounts under the control of the threat actor.

How does BEC work?

BEC scams are multi-layered attacks that begin by conducting reconnaissance to identify appropriate targets. Hackers can scour company websites or LinkedIn profiles to build out a profile of who works for the company and who is likely to have the appropriate privileges to transfer money from business accounts.

After the initial reconnaissance, attackers choose how they’re going to dupe victims into believing that their fraudulent emails are coming from a legitimate source. One common technique is email spoofing, which forges email headers to make it appear that the message comes from a trusted source. Another avenue is credential theft, where threat actors get their hands on credentials for genuine business email accounts and impersonate the owner of those accounts.

Piggybacking off the trust that targets have in these business email accounts, the attacker then crafts a spear-phishing email and creates a sense of urgency about transferring money to a designated account. Sometimes, there’ll be an intermediate step in which the attacker either uses malware or convinces the target to insert them into email threads about company payments. This intermediate step provides more information about typical payment flows and may even help refine their targets.

Types of BEC Attacks

There are many different types of BEC attacks. Since these scams do not always leverage traditional attack vectors like attachments or malicious links, they may evade identification safeguards.

Knowing what types of BEC attacks exist can help you from becoming a victim.

Account Takeover

Account takeover uses a trusted employee or executive’s email account to solicit vendors for invoice payments with new bank account information. Then these invoice payments are deposited into criminal bank accounts.

CEO Fraud

CEO fraud attacks involve impersonations of the CEO or other C-Suite executives. The attacker uses fraudulent credentials to direct employees in financial roles to transfer money to specific accounts.

Credential Theft

Credential theft attacks are often the catalyst to account takeover attacks. These attacks involve stealing a victim’s proof of identity using phishing tools like fake login-pages or keystroke loggers. Once an attacker gains access to a victim’s account privileges there is an open back door. They can sell those credentials on the dark web or use them to inflict massive financial and reputational damage to your organization.

Invoice Fraud

Invoice attacks involve impersonation of an external partner/vendor, internal employee, or brand to deliver a fraudulent invoice request. Often the attacker requests fund transfers that unsuspecting employees deposited into criminal bank accounts. These requests don’t contain malware, so they go undetected by SEGs.

Invoice attacks are costly, and they account for some of the most significant financial losses in BEC schemes.

How to Stop Business Email Compromise

Email is an essential tool for any modern business. Preventing business email compromise attacks is a challenge for all businesses. In the face of increasingly sophisticated email attacks, many organizations are looking for solutions for stopping BEC attacks. And many are struggling to find a truly comprehensive solution.

A comprehensive approach to prevent BEC attacks requires an email security solution that accounts for when attacks attempt to circumvent signature- and rule-based defenses through spoofing, in addition to human-targeted tactics like social engineering including VIP impersonation.

Email security solutions that are truly effective against business email compromise require a direct connection to cloud email providers via API. This grants the solution mailbox-level visibility to an organization's email activity including both north-south traffic and east-west. This access allows the solution to leverage tools like artificial intelligence to continuously scan and adapt to real-time data. Lastly, a comprehensive solution cannot ignore the human element of email security. Educating and empowering an organization's employees to help in the fight against BEC is the only pathway to complete protection against business email compromise.

IRONSCALES Fights BEC For You

IRONSCALES comprehensive SaaS platform gives you an edge against all attackers with an inside-out approach to email security. The IRONSCALES platform protects your organization from BEC attacks from within the mailbox. The solution's AI analyzes all email communications creating unique fingerprint profiles for each user. By cross-checking and verifying all incoming messages, IRONSCALES gives you confidence in a sender’s identity while protecting your assets — all in real-time. This allows it to detect, prevent, and protect against BEC attacks like CEO fraud, supply chain attacks, invoice fraud, and more.

Beyond the automated protections provided by IRONSCALES the platform directly integrates real-world phishing simulation testing and personalized security awareness training to educate employees on BEC attack identification and prevention best practices.

Learn more about IRONSCALES enterprise-grade Business Email Compromise (BEC) attack protection here.

Explore Our Platform Tour

Immediately jump into an interactive journey through our AI email security platform.

Begin Tour

Protect Better

Simplify Operations

Empower Your Org

Customers

Case Studies

Reviews

Press

Awards

Press: New Research

Case Study: Webhelp

Awards: INC. 5000

Inbound Email Protection

Account Takeover Protection

Image-Based Attack Protection

SOC Automation

Phishing Simulation Testing

Security Awareness Training

Crowdsourced Threat Intelligence

Collaboration Tool Protection

Adaptive AI Engine

Human Insights

Generative AI

Ecosystem Integrations

USE CASE

BEC & Executive Impersonation

Advanced Malware/URL Attacks

Credential Harvesting

Account Takeover Attacks

QR Code Attacks

Generative AI Attacks

Phishing Simulation Testing

Security Awareness Training

BUSINESS INITIATIVE

BY ROLE

BY PLATFORM

LEARN

Blog

Guides

Glossary

Resource Library

Get Started

Platform Tour

Engineering Corner

CONNECT

Events

LinkedIn

Newsletter

Email Security in the Age of AI

QR Code Phishing

The ABCs of MFA

Phishing Prevention

Spear Phishing

Voice Phishing

BY TYPE

Resellers

MSPs / MSSPs

Technology Partners

ENGAGE

Become Partner

Partner Portal

Become a Partner

What is Business Email Compromise?

Business Email Compromise (BEC) Explained

How does BEC work?

Types of BEC Attacks

Account Takeover

CEO Fraud

Credential Theft

Invoice Fraud

How to Stop Business Email Compromise

IRONSCALES Fights BEC For You

Explore Our Platform Tour

Featured Content

AI in Email Security

Gartner® Email Security Market Guide

Defending the Enterprise from BEC

Schedule a Demo