Secure corporate emails with intent-based BEC detection

2022-10-25 20:32

In a business email compromise, generally, the attacker uses emails and social engineering techniques to have one person with financial power in a company transfer money to a bank account the attacker owns.

BEC detection and blocking based on email characteristics.

BEC attackers use different social engineering techniques, yet most of the time, they use emails set up to pretend to come from a legitimate person in contact with the target.

Several security software options might help to deploy policy-based detections of BEC emails.

In some cases, the fraudsters might have compromised the executive email box and would be able to send emails impersonating them without raising alerts for that kind of detection.

The researcher explains that the intent-based approach not only detects BEC emails but also categorizes it into a kind of BEC scam: payroll, money transfer, initial lure, gift card scams, invoice scams, acquisition scams, W2 scams, aging reports and more.

News URL

https://www.techrepublic.com/article/intent-based-bec-detection/

#email