{"id":13567,"date":"2018-10-11T13:00:12","date_gmt":"2018-10-11T21:00:12","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2018\/10\/11\/news-7334\/"},"modified":"2018-10-11T13:00:12","modified_gmt":"2018-10-11T21:00:12","slug":"news-7334","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2018\/10\/11\/news-7334\/","title":{"rendered":"The BEC List: Helping Thwart Business Email Compromise through Collaboration"},"content":{"rendered":"

Credit to Author: Trend Micro| Date: Thu, 11 Oct 2018 19:30:01 +0000<\/strong><\/p>\n

\"\"<\/p>\n

Today, the Messaging, Malware and Mobile Anti-Abuse Working Group (M3<\/sup>AAWG) gave the JD Falk Award to the Business Email Compromise (BEC) List.<\/p>\n

The BEC List comprises cybersecurity firms, researchers and internet infrastructure companies that help deal with cybercriminal activities and schemes. The JD Falk Award<\/a> is given to individuals or groups whose meritorious work has helped protect online users and organizations.<\/p>\n

We commend the organizations, along with the threat and security researchers and analysts who were an instrumental part of the BEC List. Trend Micro is proud to be part of it as one of the first members at its inception in 2015. Our extensive research<\/a> on BEC \u2014 from keyloggers such as Predator Pain<\/a>, Limitless<\/a>, and Hawkeye<\/a> to the various email and social engineering tricks<\/a> used in BEC \u2014 is a reflection of our commitment to making the world safe for the exchange of digital information.<\/p>\n

Why tackle BEC?<\/strong><\/h2>\n

Online scams are a recurring pain point for users and enterprises. BEC fraud<\/a> in particular has accounted for over $12.5 billion<\/a> in global losses since 2013, according to the FBI. Its operators use malware \u2014 many of which are bought in underground marketplaces<\/a> \u2014 social engineering, or a combination of both to access and hijack systems or trick victims into wiring money into an account the cybercriminal controls. Our further research<\/a> into BEC also revealed a steady increase in BEC-related attempts.<\/p>\n

\"\"<\/p>\n

Figure 1: Half-year comparison of recorded BEC attempts<\/em><\/p>\n

Note: Data refers to the number of BEC attempts seen, which does not indicate whether the attacks were successful. BEC samples consist mainly of CEO fraud (attackers posing as CEO\/executive).<\/em><\/p>\n

 <\/p>\n

\"\"<\/p>\n

Figure 2: Malware samples used in BEC attacks from January 2017 to September 2017 based on VirusTotal samples<\/em><\/p>\n

The number of perpetrators and the scope of their crime require a combined effort between individuals and organizations across the cybersecurity community to help thwart threats like BEC.<\/p>\n

Previous recipients of the JD Falk Award were involved in various takedowns that required significant coordination and knowledge sharing such as the Avalanche takedown<\/a> \u00a0in December 2016<\/a> and DNS Changer Working Group<\/a> in November 2011<\/a>.<\/p>\n

We are honored to be recognized by the M3<\/sup>AAWG with this award. Our efforts to stop cybercriminals from successful BEC attacks \u2013 and all cybercrime \u2013 will continue.<\/p>\n

The post The BEC List: Helping Thwart Business Email Compromise through Collaboration<\/a> appeared first on <\/a>.<\/p>\n

http:\/\/feeds.trendmicro.com\/TrendMicroSimplySecurity<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Credit to Author: Trend Micro| Date: Thu, 11 Oct 2018 19:30:01 +0000<\/strong><\/p>\n

\"\"<\/p>\n

Today, the Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) gave the JD Falk Award to the Business Email Compromise (BEC) List. The BEC List comprises cybersecurity firms, researchers and internet infrastructure companies that help deal with cybercriminal activities and schemes. The JD Falk Award is given to individuals or groups whose meritorious work has…<\/p>\n

The post The BEC List: Helping Thwart Business Email Compromise through Collaboration<\/a> appeared first on <\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10413],"tags":[14347,1001,10422,4503,13379],"class_list":["post-13567","post","type-post","status-publish","format-standard","hentry","category-security","category-trendmicro","tag-bec","tag-business","tag-current-news","tag-cybercrime","tag-spotlight"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13567","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=13567"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13567\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=13567"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=13567"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=13567"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}