Security News > 2021 > February > The rise of non-English language spear phishing emails

In the past, most BEC emails have been written in English - meaning that defense systems can be tuned to recognise flag words and phrases written in this internationally recognized language.
We have observed a rise in the number of BEC emails in recent months.
It's a straightforward matter to recognize any emails containing the word "Password" or "Bank transfer," and trigger a warning which tells the recipient or security staff that the email they've been sent is potentially dangerous.
If the email manages to sneak past protection layers, employees can be trained to avoid clicking on emails which are clearly send with malicious intent.
In order to protect against non-English language BEC threats, organizations need to work with email security vendors.
To tackle non-English language email threats, organizations need to think big - or risk big consequences.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/LZaVC4QtgOA/
Related news
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Beware: PayPal "New Address" feature abused to send phishing emails (source)
- Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails (source)
- Coinbase phishing email tricks users with fake wallet migration (source)
- Why it's time for phishing prevention to move beyond email (source)
- Ukrainian military targeted in new Signal spear-phishing attacks (source)
- New Morphing Meerkat Phishing Kit Mimics 114 Brands Using Victims’ DNS Email Records (source)