Business email compromise

Research

Threat intelligence

Microsoft Defender

Business email compromise
Published Aug 18

11 minutes
Trend-spotting email techniques: How modern phishing emails hide in plain sight
By spotting trends in the techniques used by attackers in phishing attacks, we can swiftly respond to attacks and use the knowledge to improve customer security and build comprehensive protections through Microsoft Defender for Office 365 and other solutions.
Research

Threat intelligence

Microsoft Defender

Business email compromise
Published Jun 14

7 minutes
Behind the scenes of business email compromise: Using cross-domain threat data to disrupt a large BEC campaign
Microsoft 365 Defender researchers recently uncovered and disrupted a large-scale business email compromise (BEC) infrastructure hosted in multiple web services. Attackers used this cloud-based infrastructure to compromise mailboxes via phishing and add forwarding rules, enabling these attackers to get access to emails about financial transactions.
Research

Threat intelligence

Microsoft Defender

Business email compromise
Published May 6

8 minutes
Business email compromise campaign targets wide range of orgs with gift card scam
Read our investigation of a BEC campaign that used attacker-created email infrastructure to facilitate gift card theft targeting the consumer goods, process manufacturing and agriculture, real estate, discrete manufacturing, and professional services sectors.
Research

Threat intelligence

Microsoft Defender

Business email compromise
Published Feb 1

19 minutes
What tracking an attacker email infrastructure tells us about persistent cybercriminal operations
Sweeping research into massive attacker infrastructures, as well as our real-time monitoring of malware campaigns and attacker activity, directly inform Microsoft security solutions, allowing us to build or improve protections that block malware campaigns and other email threats, both current and future, as well as provide enterprises with the tools for investigating and responding to email campaigns in real-time.
Best practices

Email security

Microsoft Defender

Business email compromise
Published Oct 16

5 minutes
Top 6 email security best practices to protect against phishing attacks and business email compromise
What should IT and security teams be looking for in an email security solution to protect all their users, from frontline workers to the C-suite? Here are 6 tips to ensure your organization has a strong email security posture.

Simplify endpoint management with Microsoft Intune

Microsoft Intune is a cloud-based unified endpoint management platform that empowers IT to manage, assess, and protect apps and devices.

Learn more

Research

Threat intelligence

Business email compromise
Published Nov 16

2 minutes
Microsoft Security Intelligence Report: Strontium
The Microsoft Security Intelligence Report (SIR) provides a regular snapshot of the current threat landscape, using data from more than 600 million computers worldwide. The latest report (SIRv19) was released this week and includes a detailed analysis of the actor group STRONTIUM – a group that uses zero-day exploits to collect the sensitive information of […]

Trend-spotting email techniques: How modern phishing emails hide in plain sight

Behind the scenes of business email compromise: Using cross-domain threat data to disrupt a large BEC campaign

Business email compromise campaign targets wide range of orgs with gift card scam

What tracking an attacker email infrastructure tells us about persistent cybercriminal operations

Top 6 email security best practices to protect against phishing attacks and business email compromise

Simplify endpoint management with Microsoft Intune

Microsoft Security Intelligence Report: Strontium