Article | 1:04 min read

Ways to Protect your Business from Email Compromise

Grow Your Business

If you are a business owner, chances are you rely on email to conduct business. Learn ways you can avoid a financially damaging online crime.

Hand holding smart phone with malware screen from an email

Business email compromise (BEC) is when threat actors use email fraud to attack an organization and its employees, customers, or partners. BEC involves scammers impersonating an employee or executive at an organization or trusted vendor, such as your bank, in order to get access to funds or private information.

Over the years, BEC included a compromise of personal emails and vendor emails, lawyer email accounts, requests for W-2 information, and fraudulent requests for large amounts of gift cards. Recently, the cofense annual report found 6% of reported malicious emails were BEC. According to a recent FBI internet crime report, BEC phishing cost victims $2.4 billion over the last year. With the rise of BEC, no secure email gateway is 100% effective in blocking attacks.

Many of these emails look authentic and seem to come from a trustworthy organization. Here are ways you can protect your business from email compromise.

  1. Use secondary channels or two-factor authentication
  2. Ensure email URLs are legitimate
  3. Do not resend login credentials in response to an email
  4. Verify the sender’s email address
  5. Come up with a crisis response plan that is right for your business

Visit the Cybersecurity and Infrastructure Security Agency’s website to learn more about developing a plan of where to start when implementing cybersecurity practices for your business.


The information provided in these articles is intended for informational purposes only. It is not to be construed as the opinion of Central Bancompany, Inc., and/or its subsidiaries and does not imply endorsement or support of any of the mentioned information, products, services, or providers. All information presented is without any representation, guaranty, or warranty regarding the accuracy, relevance, or completeness of the information.