Business Email Compromise (BEC) Attacks: Threats, Vulnerabilities and Countermeasures—A Perspective on the Greek Landscape-Reference-Cited by-同舟云学术

Business Email Compromise (BEC) Attacks: Threats, Vulnerabilities and Countermeasures—A Perspective on the Greek Landscape

Published:2023-09-02 Issue:3 Volume:3 Page:610-637
ISSN:2624-800X
Container-title:Journal of Cybersecurity and Privacy
language:en
Short-container-title:JCP

Author:

Papathanasiou Anastasios¹²^ORCID,Liontos George³^ORCID,Liagkou Vasiliki²^ORCID,Glavas Euripidis²^ORCID

Affiliation:

1. Cyber Crime Division, Hellenic Police, 173 Alexandras Avenue, 11522 Athens, Greece

2. Department of Informatics and Telecommunications, University of Ioannina, Kostaki Artas, 47150 Arta, Greece

3. Department of Materials Science and Engineering, University of Ioannina, 45110 Ioannina, Greece

Abstract

Business Email Compromise (BEC) attacks have emerged as serious threats to organizations in recent years, exploiting social engineering and malware to dupe victims into divulging confidential information and executing fraudulent transactions. This paper provides a comprehensive review of BEC attacks, including their principles, techniques, and impacts on enterprises. In light of the rising tide of BEC attacks globally and their significant financial impact on business, it is crucial to understand their modus operandi and adopt proactive measures to protect sensitive information and prevent financial losses. This study offers valuable recommendations and insights for organizations seeking to enhance their cybersecurity posture and mitigate the risks associated with BEC attacks. Moreover, we analyze the Greek landscape of cyberattacks, focusing on the existing regulatory framework and the measures taken to prevent and respond to cybercrime in accordance with the NIS Directives of the EU. By examining the Greek landscape, we gain insights into the effectiveness of countermeasures in this region, as well as the challenges and opportunities for improving cybersecurity practices.

Publisher

MDPI AG

Subject

General Earth and Planetary Sciences,General Environmental Science

Link

https://www.mdpi.com/2624-800X/3/3/29/pdf

Reference52 articles.

1. Business email compromise (BEC) attacks;Humayun;Mater. Today Proc.,2021

2. Europol (2023, April 25). Internet Organized Crime Threat Assessment Report. Available online: https://www.europol.europa.eu/publications-events/main-reports/internet-organised-crime-threat-assessment-iocta-2020.

3. A Multi-Perspective malware detection approach through behavioral fusion of API call sequence;Amer;Comput. Secur.,2021

4. Europol (2023, April 25). Internet Organized Crime Threat Assessment Report. Available online: https://www.europol.europa.eu/publications-events/main-reports/internet-organised-crime-threat-assessment-iocta-2021.

5. Kaspersky (2023, April 25). Separated by a Common Language: Is the C-Suite Able to Truly Decipher and Act upon the Real Threat of Cyber-Attacks?. Available online: https://go.kaspersky.com/rs/802-IJN-240/images/Kaspersky-Speaks-your-Language-1122.pdf.

Cited by 1 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Unveiling the Dark Side of ChatGPT: Exploring Cyberattacks and Enhancing User Awareness;Information;2024-01-02