Close this search box.


Business Email Compromise 101

BEC Remains A Persistent Threat For One Big Reason
– It’s Still Really Effective

According to the FBI’s Internet Crime Complaint Center (IC3), losses from BEC surpassed $1.8 billion in 2020 – an average of $93,000 per incident.

BEC is challenging to prevent, especially when vendors are compromised, but SpyCloud believes prevention begins with addressing the human attack surface, particularly the prevalence of poor password hygiene. When passwords are reused between employees’ or vendors’ work and personal accounts, credentials that have already been exposed in a data breach are fair game for use in BEC campaigns.

This report examines the very human problem of password reuse and the social engineering tactics used by criminals to dupe organizations. As this report explains, all it takes to steal from your business is a single compromised account.

Download the PDF version of the whitepaper to print or share with others.


Account Takeover Prevention
Detect and automatically reset exposed credentials before criminals can exploit them to bypass MFA and take over accounts.

Trusted by market leaders

With 500+ customers around the world, including half of the Fortune 10, SpyCloud is the leader in operationalizing Cybercrime Analytics to protect businesses.

We’re on a mission to make the internet a safer place by disrupting the criminal underground. Together with our customers, we aim to stop criminals from profiting off stolen data.

#1 Global
Streaming Service
#1 Global
#1 Global Software
US Banks
#1 Global
Online Retailer
#1 US Crypto Exchange

Check Your Exposure

See your real-time breach exposure details powered by SpyCloud data.

[What’s New] Check Your Exposure has been expanded with more recaptured data. See Your Results Now

Close this search box.