Business Email Compromise (BEC) is one of the leading causes of wire fraud, one of the most financially damaging vectors of cybercrime. This sophisticated, socially-engineered scam targets businesses conducting legitimate invoice, escrow, redemption, and other fund transfers, aiming at diverting payment to fraudulent bank accounts.
While some cybersecurity solutions help protect organizations from miswiring their own funds, they remain exposed to scenarios where it’s their clients falling for these scams.
RMail PRE-Crime™ module harmoniously extends your existing email security systems, adding elegantly-easy encryption, unique BEC targeted attack detection, and more, with AI to extend DLP automation.
User sends an email to a client about a payment due to them (invoice, purchase, etc.)
Your recipient’s email account is being unknowingly eavesdropped on by a cybercriminal. This is how cybercriminals get their intel on who to strike, and when.
The cybercriminal, posing as the original sender, creates a lookalike domain, cuts you out of the communication and starts communicating with your recipient posing as you. They send a copy of your email including PDF payment details for a wire or ACH, and change only one thing: the account to send the money to.
The cybercriminal then has someone follow-up by phone to your recipient, stating that they are your assistant and are following up to see when the invoice or purchase payment will be sent.
Your recipient sends payment to the cybercriminal account thinking it was yours, you follow-up to find out when payment will be made. They reply they already sent, and you say have not received. Funds are gone.
If RMail Active Tracker™ technology identifies unusual activity patterns, RMail generates an Eavesdropping™ Alert.
BEC lures start with cybercriminals targeting their victims by eavesdropping on email from sender to recipient, to siphon off email, analyze it, copy it with slight modifications (e.g., payment instructions), and then pivot replies so they route in a loop back to the cybercriminal.
With Email Eavesdropping™ alerts, every email sent out of the organization has every activity associated with it analyzed forensically, for a period of time. These alerts include all the email forensics so that IT security specialist can validate and take immediate action, before the cybercriminal lures users into mis-wiring money to the criminal’s bank.
The IT Admin or MSP in charge of e-security receives a daily snapshot of all activity. This aggregate report provide them peace-of-mind that there are activities abound forensically monitoring all outbound email along each message’s journey to the recipient and beyond.
IT Admins or MSPs can swiftly investigate further if they see any high alerts or unusual activity across all users, all domains, and all companies that they manage or monitor security for.
MSPs can offer to become real-time eavesdropping monitors for their clients, using these reports and their related alerts.
Senders can be proactive with secure sending. RMail Digital Seal® authentication makes it easy for a recipient to verify origin and authorship of an email (for example, an email carrying an invoice) and re-create an authenticated copy of the original message content instantly. This empowers the recipient of the invoice to verify authenticity of payment information in real-time, anytime, before paying.