Business Email Compromise (BEC)

Phishing schemes and e-mail compromises are nothing new. However, the methods of deception and their complexity continue to evolve, circumventing spam filters and other proactive security measures. Learn more about how different types of e-mail threats are being neutralized.

Email Security, Phishing

Resolve and Evolve: Machine Learning for Email Threat Protection

Dena Bauckman - ZixCorp • •

As email threats become more advanced, machine learning is being used to detect these attacks. Learn the latest about machine learning & how it is changing the threat landscape. This session discusses: How machine learning is being used to detect threats Latest advancements in machine learning for cyber...

Start this Session

How to Use Automation and Orchestration to Effectively Respond to Phishing Attacks

Myke Lyons - ServiceNow • •

Email fraud and phishing continue to be an effective attack vendor as they are relatively inexpensive and take advantage of the weakest link in your security program: your users. Combatting these attacks is slow and labor intensive as security analysts typically spend hours trying to determine if an email and its...

Start this Session

Stop Attacks Before They Reach the Inbox

Denis Ryan - Proofpoint • •

As you know, impostor email continues to be a challenge for most security professionals. We are going to discuss the tactics and targets of impostor email via this Email Fraud Workshop breakout. Denis Ryan, Sr. Director of Email Fraud at Proofpoint, will discuss: The email threat landscape; How to identify potential...

Start this Session

Coming Soon

Business Email Compromise: Building a Cyber Resilient Strategy to Crack Down on Attackers

Session In Development •

•

Business email compromise attacks are intended to scam organizations by impersonating high-level executives and convincing employees to wire money to fraudulent accounts or leak sensitive information. Targeted malware, socially engineered impersonation attacks, and phishing threats are still reaching employee inboxes....

Preview this Session

Coming Soon

Phishing Attacks: How Costly Can They Be for Enterprises?

Session In Development •

•

In 2018, nearly one-third of all data breaches involved phishing attacks or tactics, according to Verizon's 2019 Data Breach Investigations Report. In the annual Human Factor 2019 report, some researchers indicated that "more than 99 percent of threats observed required human interaction to execute." This session...

Preview this Session

Coming Soon

Business Email Compromise: Protecting the Enterprise

Session In Development •

David Stubley - 7 Elements • •

What does a successful compromise of an organisation's email system look like, and what can we do to protect ourselves? This talk will use real-life case studies from recent incidents to dissect the anatomy of a modern Business Email Compromise attack. Attend this session for expert insight on: Current attack...

Preview this Session

Coming Soon

Making Email Safe Again: How to Empower Staff to Share Data Via Email

Session In Development •

Sudeep Venkatesh - Egress • •

People cause data breaches when using email for a multitude of reasons. They might be tired, rushing or using a mobile device. Or they might be moving to a new job and feel a sense of ownership that entitles them to remove data from their current employer's network. Yet at as people communicate and collaborate...

Preview this Session

Building a Cyber-Resilient Program for Email Security: A Holistic Approach

Anoop Das - Mimecast • •

Email remains a key vector for attacks because of the pervasiveness of phishing. Despite significant investments in security defenses, attackers and fraudsters continue to infiltrate organizations through targeted and advanced techniques. That's why organizations need a cyber-resilient program for email that's easy to...

Start this Session

Identity Deception and Social Engineering Attack Vectors - Email Makes It Easy!

Andrew Coyle - Agari • •

Despite the proliferation of social networks and messaging apps, email remains the primary means of communication today. Unfortunately, it also remains a persistent threat vector for cybersecurity abuse. We see these evil emails everywhere: at work, at home and in the news, attempting to sell something, or steal...

Start this Session

Anatomy of a BEC Attack

David Stubley - 7 Elements • •

This session looks at two real-life case studies, with different outcomes from the same initial starting point for two companies. The first led to £140k loss due to malicious invoicing; the second led to data exfiltration and reputational damage (as well as ICO reporting due to GDPR). Malicious actors use common...

Start this Session

Coming Soon

Case Study: Look-a-Like Domains, Phishing and Procurement Fraud

Session In Development •

Allan Stojanovic - University of Toronto • •

The University of Toronto has been impersonated over a dozen times in the past two and a half years in a somewhat sophisticated scam designed to steal goods to order. This presentation will detail how the scam works (with examples!), talk about some of the mitigating actions that have been performed, as well as some...

Preview this Session

Email: Still A Top Threat Vector!

Brent Maher - Johnson Financial Group • •

A consistent message throughout this Summit: Most threats to an organization continue to enter through the route of least resistance - email. In this session, hear directly from a CISO on why email security needs renewed focus and how he's addressed it in his own organization, including: Why smart employees continue...

Start this Session

How to Combat Targeted Business Email Compromise Attacks

Markus Jakobsson - Agari • •

The success of a Business Email Compromise (BEC) attack lies in exploiting the trust and familiarity between sender and recipient, and evading traditional security solutions by eliminating the use of malicious URLs or attachments - which existing security solutions were never designed to do. According to the FBI,...

Start this Session

Email Fraud - An Inside Look at the Fraudsters' Strategies and Tactics

Dan Hoffman - Agari • •

Business email compromise attacks that impersonate executives and business partners to trick employees are the biggest cyber threat organizations face today. This is not news. But what may come as a surprise is that the vast majority of BEC attacks are preventable. This session reviews why email spoofing works, the...

Start this Session

WannaCry, Petya & the Global Ransomware Epidemic: How to Protect Your Organization

Darius Goodall - Barracuda • •

It's a growing epidemic: Ransomware, advanced persistent threats and phishing attacks are responsible for hundreds of millions of dollars in damage due to lost productivity, tainted credibility and worse - lost revenue. As attackers plan increasingly more sophisticated attacks, your organization needs to know how best...

Start this Session