what is bec

BEC stands for Business Email Compromise, which is a type of phishing attack that targets organizations with the goal of stealing money or critical information. In a BEC scam, the attacker poses as someone the recipient should trust, such as a colleague, boss, or vendor, and asks the recipient to make a wire transfer, divert payroll, change banking details for future payments, or reveal sensitive information. BEC attacks are difficult to detect because they rely on impersonation and other social engineering techniques to trick people interacting on the attackers behalf, rather than using malware or malicious URLs. BEC scams are on the rise due to increased remote work, and there were nearly 20,000 BEC complaints to the FBI in the previous year.