Business email compromise (BEC) that results in wire transfer fraud and ransomware are the two most prevalent (and critical) threats facing SMBs and organizations.
With BEC, attackers gain access to email servers at a business and monitor all traffic to gather personal information. After spending some time (perhaps months) to learn the ins and outs of the business’ finances, they compromise a payment using the personal information they found. This relies on deception regarding account numbers and transfers.
Ransomware is malware (malicious software) that involves compromise of a network, encryption of the organization’s operating systems and data, and subsequent demand of a ransom to decrypt the systems and data. The threat actors usually ask victims for payment (ranging from the hundreds to millions of dollars) using cryptocurrencies, like Bitcoin. Convincing phishing emails are one of the means of attack (vectors) that ransomware begins with. Ransomware criminals now rely on impressive services such as 24/7 tech support and trained negotiators. Unprotected backups are frequently targeted and recovery then becomes more difficult.