This report demonstrates that advanced email attacks continue to evolve as cybercriminal organizations operationalize their strategies and develop inventive new schemes. Silent Starling’s remarkable patience in leveraging compromised email accounts to score higher payouts through vendor email compromise scams should put every business on notice.
The supply chain is no longer safe from the email attacks that come with heavy financial costs, serious reputational damage, and lost customers and opportunities. With the vendor email compromise scams run by Silent Starling as one example, this report demonstrates that a new approach to email security—one focused on detecting true identity rather than malicious content—is needed to protect against the VEC that may materialize from within the supplier ecosystem.
The Agari Cyber Intelligence Division (ACID) is the only counterintelligence research team dedicated to worldwide BEC and spear-phishing investigation. ACID supports Agari’s unique mission of protecting digital communications so that humanity prevails over evil. ACID uncovers identity deception tactics, criminal group dynamics, and relevant trends in advanced email attacks. Created by Agari in 2018, ACID helps to impact the cyber threat ecosystem and mitigate cybercrime activity by working with law enforcement and other trusted partners.
Learn more at acid.agari.com
Agari is transforming the legacy Secure Email Gateway with its next-generation Secure Email Cloud™ powered by predictive AI. Leveraging data science and real-time intelligence from trillions of emails, the Agari Identity GraphTM detects, defends, and deters costly advanced email attacks including business email compromise, spear-phishing, and account takeover. Winner of the 2018 Best Email Security Solution by SC Magazine, Agari restores trust to the inbox for government agencies, businesses, and consumers worldwide.
Learn more at www.agari.com