Sharp rise in business email compromise

Cyber attackers are expanding their attack methods to steal money and to gain access to corporate and employee data, a report reveals

There has been a sharp increase in business email compromise(BEC) or impersonation attacks, according to the latest email security risk assessment report by email management firm Mimecast.

The report is based on aggregated tests that measure the efficacy of widely used email security systems and is aimed at helping participating organisations better understand the number and type of email-borne threats that are getting through their current defences.

As part of the cumulative assessments, Mimecast inspected more than 142 million emails that have passed through organisations’ incumbent email security suppliers, which revealed an 80% increase of impersonation or BEC attacks in comparison to the previous quarters’ report.

In BEC attacks, criminals typically gain access to a corporate email account and spoof the owner’s identity to trick employees, customers or partners into approving money transfers to criminal accounts.

An alternative approach is to compromise the computer, email account or email server of the victim organisation to intercept, alter or initiate business transactions, including direct payments on behalf of the victim organisation with the money destined to financial accounts they control.

Mimecast is applying its cloud-based microservices approach ever more widely to enable customer organisations to increase their cyber resilience.


Mais do que uma solução tecnológica, somos uma decisão estratégica para as organizações.

Nossa missão é redefinir a relação das empresas com a cibersegurança e a experiência dos usuários no processo de autenticação e acesso a ativos tecnológicos.