Wombat Security is a leader in security awareness and training. Our blog covers the latest cyber security news, insights, and best practices. We arm infosec professionals with the knowledge and tools they need to improve end-user behaviors and reduce organizational risk.

Business Email Compromise: Prevent Wire Transfer Fraud & W-2 Phishing

Posted by Gretel Egan on 7/27/17

Topics: Security Awareness and Training, Risk Management, Phishing, Vishing, Keys to Success, Business Email Compromise, All Posts

Wombat_Blog_BECAttacks_July2017.jpgThough business email compromise (BEC) phishing attacks continue to plague organizations worldwide, many end users still don't fully appreciate the danger. Employees are not aware of how sophisticated these targeted social engineering attacks can be, the very real threat they pose to their personal reputations, and the impact they can have on their organizations. 

As we've discussed in prior posts, BEC scams can be particularly sneaky, as cybercriminals use social media, vishing (voice phishing) calls, and other outlets to gather details and personalize their attacks, making them difficult for targets to spot. Because these types of spear phishing attacks can directly compromise organizations via wire transfer fraud or requests for sensitive data (like employees' W-2 tax statements), they immediately impact a business's bottom line and/or credibility.

To help you futher your security awareness training, we've created the following infographic, which explains what a BEC attack is, highlights the pervasiveness of these cybersecurity threats, and offers tips for prevention and protection. 


Our infographics, communications calendar, and other free security awareness materials can help you build a culture of security within your organization.

Check Out Our Free Resources


Please feel free to share this free resource with your employees as part of your cybersecurity awareness and training initiatives.



Try Our Interactive Security Awareness Training Modules

Our 25+ interactive training modules in topics like Email Security, URL Training, Mobile App Security, and more are proven to change the behavior of end users and reduce risk.

Try Our Modules

   Educate Yourself: Protect Against Security Vulnerabilities