• Security Tips

Who Is the True Target of Business Email Compromise (BEC)?

Cybercriminal Image 2

What is BEC?

In a Business Email Compromise (BEC) attack, cybercriminals impersonate business professionals to trick victims into sharing information about their organization. This attack is an advanced form of spear-phishing: a phishing attack that targets a specific individual or department within an organization. In a BEC attack, cybercriminals impersonate a business partner, supplier, or prospect. The cybercriminals’ end goal is to transfer funds from an organization to themselves. A successful BEC attack can result in a huge loss for the organization involved. 

Who Is the Target of a BEC Attack?

Originally, the primary targets for BEC attacks were employees in high-level and financial roles. As a result, many organizations began to take extra security measures to protect these employees. However, as technology and cybersecurity change, so do the cybercriminals’ tactics. Now, BEC attacks target employees of all types and levels. For example, cybercriminals have recently started to target employees in sales roles. Sales representatives are popular new targets because of their connection with financial departments for payment processing. 

Even employees with no ties to financial departments can be targeted. Any relationship a cybercriminal creates within an organization can help them gain access to vital information. For example, administrative assistants often have access to high-level employees’ business calendars. If a cybercriminal targets an overly trusting assistant, the cybercriminal could win themselves a meeting with an executive.

Remember These Tips to Stay Safe:

  • Be suspicious of any emails sent from people you do not know, even people who appear to represent a legitimate organization.
  • Before sharing any information about your organization or coworkers over email, be sure to verify the sender’s identity. You could ask for proof of who they are, where they work, or contact them by phone or video call.

Always follow your organization’s protocol for reporting suspicious emails. Following cybersecurity protocols will help keep everyone’s information safe, no matter who the original target was. 



Knowbe4 Logo

Stop, Look, and Think. Don’t be fooled.

Like This Post?

Facebook
X
LinkedIn
Email

More Posts

Fake Permitting Scam Image
The Latest Scams

Scammers Are Targeting Home Projects—Here’s What to Watch

If you’re building, renovating, or improving your home, there’s a new scam you need to watch for—and it’s catching people at exactly the wrong time. How the Scam Works You receive an email that appears to come from a local government office—maybe your city, county, or permitting department. The message claims there’s an issue with your project and that you

March 30, 2026
Hand Remote Control Image
Fiber

Stop the Buffer: How to Get the Most from Your Streaming Experience

There’s nothing more frustrating than getting to the final seconds of a close game—only to see the spinning buffering wheel right before the winning shot. While buffering is often blamed on slow internet, that’s not always the case—especially if you’re already connected to Citynet Fiber. Your streaming device, settings, and even your home network setup can all impact performance. Here’s

March 27, 2026
Photography Tips Image
Technology

Phone Photography Tips: Take Better Photos This Spring

Capture Spring Like a Pro — With Just Your Phone Spring is one of the most photogenic times of year—blooming flowers, longer golden-hour light, and weekends filled with moments worth remembering. The best part?You don’t need a $3,000 camera or professional training to capture it all. The phone in your pocket is more powerful than most people realize. With just

March 27, 2026
Cybersecurity Hacker Hoodie Image
Cybersecurity

How Long Attackers Stay in a Network Before They’re Discovered

When people imagine a cyberattack, they often picture a dramatic event — systems suddenly shutting down or files becoming encrypted. But many cyber incidents don’t unfold that way. In many cases, attackers quietly gain access to a network and remain there for weeks or even months before being discovered. This period is known as “dwell time.” During this time, attackers

March 25, 2026
Cybersecurity Alert Critical Image
Cybersecurity

5 Critical Mistakes to Avoid During a Cyberattack

Think your business may already be compromised? See the warning signs and response steps here Even well-intentioned actions can make a cyber incident worse Cyberattacks often unfold quickly, and the wrong response in the first few minutes can make an incident far more difficult to contain and investigate. When a cyber incident occurs, the natural reaction is to act quickly

March 25, 2026
Man Laptop Cybersecurity
Cybersecurity

How Most Cyberattacks Actually Start

It’s usually not a sophisticated hack — it’s a moment of trust. Many organizations imagine cyberattacks as highly technical breaches targeting servers or networks. In reality, most cyber incidents begin with something much simpler – a human mistake or a moment of misplaced trust. Cybercriminals increasingly focus on manipulating employees rather than breaking through technical defenses. Here are some of

March 25, 2026
View All Posts

SuperPod with WiFi 6E

Plume SuperPod WiFi 6E Specs

SuperPod with WiFi 6

Plume SuperPod WiFi 6 Specs

SuperPod

Plume SuperPod Secs