A ‘New Age’ of Sophisticated Business Email Compromise is Coming

2020-07-13 13:00

A newly discovered, sophisticated threat group that targets organizations without DMARC implemented and relies on business email compromise is heralding what researchers call "a new age" of business email compromise.

On July 15 at 2 p.m. ET, join Valimail Global Technical Director Steve Whittle and Threatpost for a FREE webinar, "DMARC: 7 Common Business Email Mistakes." This technical "Best practices" session will cover constructing, configuring, and managing email authentication protocols to ensure your organization is protected.

I'm joined by Ronnie Tokazowski with Agari today, who is here to talk about business email compromise and other email related phishing threats.

Then depending on how DMARC was enabled, if it was enabled, then they would send the email in one way to where it would actually look like it was still coming from the external email account.

The second thing was, if the organization did not have DMARC enabled, that meant that they were allowed to spoof somebody else within the company, so that they would go ahead and use an email spoof in order to spoof where that email was coming from, in order to help make it look like yes, this is actually the legit person.

News URL

https://threatpost.com/a-new-age-of-sophisticated-business-email-compromise-is-coming/157332/

#compromise #email

News URL

Related news