THREAT INTELLIGENCE BRIEF
The Geography of BEC
October 13, 2020
Agari Cyber Intelligence Division (ACID) is the world’s only counterintelligence research group dedicated to business email compromise (BEC) investigation and cybercrime abatement. Since May 2019, ACID has conducted more than 12,000 active defense engagements with threat actors. ACID works closely with CISOs at global enterprises, law enforcement, and other trusted partners to stop identity-based phishing and socially-engineered cybercrimes.
Agari Active Defense is a service that delivers actionable threat intelligence driven through active engagement with Business Email Compromise (BEC) threat actors.
Get Notified of New Reports
Learn More About Emerging Threats
Get the Latest Agari Insights
Cosmic Lynx is a Russia-based BEC cybercriminal organization that has significantly impacted the email threat landscape with sophisticated, high-dollar phishing attacks.
Read the Report
Exaggerated Lion is a BEC cybercrime ring that operates out of Africa with members in Nigeria, Ghana, and Kenya. This is one of the most prolific BEC groups ever discovered, targeting more than 3,000 employees at nearly 2,100 companies throughout the United ...
Read the Report
Vendor email compromise is a new form of advanced email attack that uses compromised email accounts to target the global supply chain. With the cybercriminal group we’ve named Silent Starling, we see how devastating these attacks can be.
Read the Report
Business email compromise has continued to grow into a billion-dollar industry as cybercriminals turn to it as their preferred scam. But with the West African gang we’ve named Scattered Canary, we have deeper insight into how BEC is connected to the rest of ...
Read the Report