THREAT INTELLIGENCE BRIEF
Anatomy of a Compromised Account
June 14, 2021
Agari Cyber Intelligence Division (ACID) is the world’s only counterintelligence research group dedicated to business email compromise (BEC) investigation and cybercrime abatement. Since May 2019, ACID has conducted more than 12,000 active defense engagements with threat actors. ACID works closely with CISOs at global enterprises, law enforcement, and other trusted partners to stop identity-based phishing and socially-engineered cybercrimes.
Agari Active Defense is a service that delivers actionable threat intelligence driven through active engagement with Business Email Compromise (BEC) threat actors.
Get Notified of New Reports
Learn More About Emerging Threats
Get the Latest Agari Insights
Discover the global reach of the world’s top cyber threat, with insight into where BEC threat actors are located worldwide.
Read the Report
Cosmic Lynx is a Russia-based BEC cybercriminal organization that has significantly impacted the email threat landscape with sophisticated, high-dollar phishing attacks.
Read the Report
Exaggerated Lion is a BEC cybercrime ring that operates out of Africa with members in Nigeria, Ghana, and Kenya. This is one of the most prolific BEC groups ever discovered, targeting more than 3,000 employees at nearly 2,100 companies throughout the United ...
Read the Report
Vendor email compromise is a new form of advanced email attack that uses compromised email accounts to target the global supply chain. With the cybercriminal group we’ve named Silent Starling, we see how devastating these attacks can be.
Read the Report