Business Email Compromise (BEC)

Business Email Compromise (BEC) is fraud carried out through compromised or spoofed business email accounts — typically to redirect payments or data.

Attackers gain access to or impersonate a trusted email account, then manipulate communication — for example, changing bank details on an invoice.

BEC is one of the most financially damaging attack types because it exploits trust and process, not just technology.

RELATED TERMS