Top Three FBI-Special-Agent Speaker Insights on BEC Insights from the field (agent) – FBI field agent that is… We’ve had a few days of insightful discussions at the world’s largest legal IT security event, ILTA LegalSEC. Since many of you are not able to (or not in the right frame of mind to) travel to beautiful Baltimore to experience this event live, I thought I would dedicate this week’s Tech Essentials to sharing the top three FBI-special-agent speaker insights (from my perspective). 1. Ransomware sounds ferocious. But, Business Email Compromise is much more financially ferocious. The FBI’s 2022 cybercrime report states that total financial losses from Ransomware attacks over the year were $35 million. Meanwhile, total Business Email Compromise losses were $2.7 billion. Said another way, Ransomware is 1.3% the financial risk in aggregate as Business Email Compromise losses. Wow, that was an unexpected statistic!
•
•
What is Ransomware, you might ask your friendly Chat AI? It is when cybercriminals cryptographically lock critical files on your computer systems and will only unlock them if you pay them money, ransom. This is usually a high tech intrusion and complex deployment of malware, etc. That sounds fierce. What is, by comparison, a Business Email Compromise attack? Also known as BEC, this is when a cybercriminal poses as a trusted colleague and uses low tech psychological tactics to trick people into mis-wiring funds (to the cybercriminal rather than to a legitimate invoice payment account or transaction closing escrow). This is relatively low tech but highly methodical in terms of cybertrickery.
2. Top targets for BEC, according to the FBI special agent presenters, are real estate firms and those associated (realtors, title insurance, closing agents, closing agent attorneys, settlement agencies, escrow agents, mortgage banks, etc.). Middle of the pack-targets are law firms as well as human resources and invoicing departments of companies of all sizes. •
The FBI says that if they are notified within 72 hours of the mis-wire, they are 84% likely to recover the funds. Beyond 72 hours, nil. But, due to the tactics that the