Monday, 20 December 2021 14:21

The rising threat of business email compromise attacks presents opportunities for MSPs Featured

By Luke Smith, regional account director, Barracuda MSP
Luke Smith, Regional Account Director, Barracuda MSP Luke Smith, Regional Account Director, Barracuda MSP

GUEST OPINION: It’s been an essential communication tool for decades, but now email is becoming a growing source of security threats for Australian businesses. Indeed, the Australian Cyber Security Centre’s Annual Cyber Threat Report 2021 stated that the average loss for each successful business email compromise attack is now more than $50,600.

Targeted messages appearing to come from legitimate sources are being increasingly used by cybercriminals intent on causing disruption or achieving financial gain. Frustratingly for security teams, the tactic is working.

According to recent research by Barracuda1, an average organisation is now targeted by more than 700 email-based social engineering attacks every year. The average chief executive alone received 57 targeted phishing attacks during the same period.

Growing sophistication

While such attacks are far from new, it’s the growing sophistication that has security experts most concerned. Where once they were relatively easy to spot because of clumsy wording or suspicious sending addresses, now they can be almost impossible to differentiate from legitimate emails.

During the 12-month period covered by the research, it was discovered that the Microsoft brand was used in 43% of all phishing attacks. This was followed by WeTransfer (18%), DHL (8%) and Google (8%).

Attacks are also becoming much more targeted. In the past, the same fraudulent email tended to be sent to large numbers of recipients in the hope that a small proportion would be tricked into opening them and either clicking on a link or opening an infected attachment.

Now, it’s more likely that phishing emails will be tailored for their recipients. This could be done by appearing to come from a business with which the recipient already has a relationship. Alternatively, the messages may seemingly have been sent by a friend or co-worker.

The types of people being targeted is also shifting. The research found 77% of business email compromise (BEC) attacks are aimed at employees outside of traditional financial and executive roles. Around one in five involve employees in sales positions.

Not just ransomware

Although ransomware is becoming an increasing issue for businesses, BEC attacks also take other forms.

For example, during 2020, an Australian hedge fund fell victim to an attack which forced it into bankruptcy. The attack involved the sending of false invoices which led to the company inadvertently transferring $8.7 million to bank accounts controlled by the cybercriminals.

That incident is not a one-off event. According to ACCC*, total losses amounted to $128 million in 2020 with the average loss per successful attack coming in at more than $50,000.

Protecting against attacks

With the threat of BEC attacks continuing to increase, there are some key protective measures that MSPs can support Australian businesses with. They include:

  • Deploy AI tools:
    Artificial intelligence (AI) is becoming a valuable technology aiding the fight against cybercrime in general and BEC attacks in particular. AI-powered tools can spot suspicious attacks before they are launched and alert security teams that action is required.
  • Train staff:
    Unfortunately, the weakest link in cybersecurity remains the users. It’s therefore vital that organisations ensure their staff are aware of the threats posed by BEC attacks and the steps they can take to avoid becoming victims.
  • Review internal policies:
    Training should be backed up by a comprehensive review of existing policies on how email is managed. The policies should include how and where messages are stored, the security measures protecting accounts, and who should be alerted if suspicious activity is spotted.
  • Deploy account takeover protection:
    Many BEC attacks originate from compromised email accounts. For this reason, it is important to have in place measures that secure staff accounts and ensure that
    unauthorised access is prevented.

Email is going to remain an enticing attack vendor for cybercriminals for some time to come. For this reason, it’s important for businesses to take all the necessary steps to reduce the likelihood that they will be successful. Make 2022 the year that BEC attacks awareness is highlighted within your organisation.

  * Source: Targeting scams: Report of the ACCC on scams activity 2020 (ACCC, 7 June 2021)


Read 1430 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here


Thoughtworks presents XConf Australia, back in-person in three cities, bringing together people who care deeply about software and its impact on the world.

In its fifth year, XConf is our annual technology event created by technologists for technologists.

Participate in a robust agenda of talks as local thought leaders and Thoughtworks technologists share first-hand experiences and exchange new ways to empower teams, deliver quality software and drive innovation for responsible tech.

Explore how at Thoughtworks, we are making tech better, together.

Tickets are now available and all proceeds will be donated to Indigitek, a not-for-profit organisation that aims to create technology employment pathways for First Nations Peoples.

Click the button below to register and get your ticket for the Melbourne, Sydney or Brisbane event



It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site and prominent Newsletter promotion and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.


Share News tips for the iTWire Journalists? Your tip will be anonymous




Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News