Business email compromise (BEC) attacks cost organizations millions of dollars every year and there are no signs of them abating any time soon. In addition, executive level (C-suite) email accounts are witnessing significant numbers of attacks and their network privileges are making defensive measures more challenging. As such, there are a few simple cyber hygiene measures organizations can implement to protect themselves and mitigate further attacks. First, executives should receive role-based awareness training for recognizing suspicious emails. Second, technical controls, like multi-factor authentication, should be implemented to create a layered defense. Third, emphasize to C-suite staff that they should serve as role models for others in the organization for implementing cybersecurity best practices. And finally, cybersecurity employees should relay the significance of the threat from BEC attacks to executives in a manner that emphasizes potential damages to business operations or reputation. Read the full article at CSO.
H2Oex: In Person 1 day event/exercise. Thurs Dec 5th. Washington DC. Join us!