Fake CEOs appear in nearly half of phishing scam emails

null

Cyber criminals engaged in email fraud most frequently try to impersonate the CEO of a company. This is according to a new report released by Barracuda Networks.

Based on a poll of more than 3,000 business email compromise attacks, the report says that the CEO was impersonated in almost half of all cases – 42.95 per cent.

Barracuda says this completely justifies the fact that ‘CEO fraud’ is the term often used to describe Business Email Compromise (BEC).

The victims of these attacks are, most often, junior roles. More than half (53.7 per cent) of recipients are not C-level, and do not operate in sensitive departments such as human resources or finances.

Usually, the goal of such an attack is to have the victim wire some cash (46.9 per cent of cases). The second most popular goal is to get the victim to click on a malicious link (40.1 per cent).

Six in ten attacks didn’t have a malicious link, but include simple plain text with the goal to fool the victim into committing a wire transfer or sending sensitive information. Being in plain text also makes it harder for antivirus software to spot the attempt.

Despite increasing investment in cybersecurity, fraud is still a huge headache for businesses. Recent RiskIQ reports claimed that every minute, almost 2,000 people get scammed out of more than a million dollars.

Image Credit: Gustavo Frazao / Shutterstock