FBI recently posted a summary on www.ic3.gov about the status of BEC (Business Email Compromise) and financial loss along with it.
According to this summary, from October 2013 to May 2018, reported incidents number is 78,617, exposed dollar loss is up to $12,536,948,299. The main target is real estate sector.
Because real estate business involves fund transfer. None of buyers and agency are tech savvies. It’s quite easy to fall into the trap.
When the bad guys, using a compromised email account write to you, it’s really difficult to distinguish this fake one from any normal ones, by just looking into the raw data of the email. All look normal.
Imagine a mail sitting on top of your Inbox, asking you to transfer 5,000 USD to an account as advanced payment. It is from the CFO. Will you ever doubt if this instruction really comes from him/her?
You should pick up the phone and confirm with the CFO. But you won’t because you know how busy he/she is.
So the best precaution is do not let credential steal happens.
Most of the time, the whole BEC starts with credential steal, by the means of phishing. The high rank bosses receive a phishing mail and turn in the passwords of their accounts.
At this time, you should let experts help you.
Mr Post inspects links in your emails. It scrutinises what the site behind the link looks like. If there is a risk of being phished, Mr Post will warn you. Further more, it also unveils the “Real Sender” for your information, so now you know who actually sent you this email and then make a wise decision accordingly.
Don’t be the next fraud victim. Install Mr. Post on Microsoft AppSource at zero cost!