THREAT INTELLIGENCE BRIEF
The Geography of BEC
October 13, 2020
The Agari Cyber Intelligence Division (ACID) is the only counterintelligence research team dedicated to worldwide business email compromise and spear phishing investigation. ACID supports Agari’s unique mission of protecting digital communications so that humanity prevails over evil. The team works to uncover identity deception tactics, criminal group dynamics, and relevant trends in advanced email attacks. Created in 2018, ACID helps to impact the cyber threat ecosystem and mitigate cybercrime activity by working with law enforcement and other trusted partners.
Agari Active Defense is a service that delivers actionable threat intelligence driven through active engagement with Business Email Compromise (BEC) threat actors.
Get Notified of New Reports
Learn More About Emerging Threats
Get the Latest Agari Insights
Cosmic Lynx is a Russia-based BEC cybercriminal organization that has significantly impacted the email threat landscape with sophisticated, high-dollar phishing attacks.
Read the Report
Exaggerated Lion is a BEC cybercrime ring that operates out of Africa with members in Nigeria, Ghana, and Kenya. This is one of the most prolific BEC groups ever discovered, targeting more than 3,000 employees at nearly 2,100 companies throughout the United ...
Read the Report
Vendor email compromise is a new form of advanced email attack that uses compromised email accounts to target the global supply chain. With the cybercriminal group we’ve named Silent Starling, we see how devastating these attacks can be.
Read the Report
Business email compromise has continued to grow into a billion-dollar industry as cybercriminals turn to it as their preferred scam. But with the West African gang we’ve named Scattered Canary, we have deeper insight into how BEC is connected to the rest of ...
Read the Report