Report: GenAI Drives 1,760% Surge in Business Email Compromise Attacks

A report recently published by Perception Point, a provider of advanced email and workspace security solutions, has identified a 1,760% year-on-year increase in social engineering-based Business Email Compromise (BEC) attacks over the course of 2023. Perception Point's '2024 Annual Report: Cybersecurity Trends & Insights' highlights how threat actors are leveraging increasingly accessible GenAI tools to scale and craft highly sophisticated and novel social engineering attacks. Also reported was a substantial shift to attacks using evasive tactics, including quishing (QR code phishing) and two-step phishing, that bypass traditional security systems. The report's findings are based on in-depth analysis by Perception Point's Incident Response team and data collected from the company's threat detection platform.

The past year has been defined by unprecedented advances in the capabilities and accessibility of GenAI, which malicious actors have harnessed to enhance and scale cyberattacks. In particular, GenAI has fueled the phenomenal growth in BEC attacks, facilitating incredibly well-crafted and targeted social engineering-based attacks that are challenging to detect. Whereas BEC attacks accounted for only 1% of all cyberattacks in 2022, their proportion of the total rose to 18.6% of all attacks in 2023.

A deeper exploration of 2023's most prominent attack trends reveal a number of other concerning developments that threaten the modern organization's workspace, which encompasses email, web browsers, and cloud collaboration channels.

Phishing is still the top cyber threat, accounting for more than 70% of all attacks, with little change from the previous year. But quishing emerged as a new trending threat in 2023, accounting for 2.7% of all phishing attempts. Attackers are exploiting the prevalence and inherent trust of QR codes in modern life to turn a straightforward scan into a serious threat. Throughout 2023, 1 out of 18 (6%) QR codes sent via email were malicious.

Over the year, the prevalence of two-step phishing attacks increased by 175%. These attacks are particularly deceptive as unlike traditional phishing methods, their multi-stage character makes them especially hard to detect. In these attacks, threat actors exploit legitimate services and hosting sites, often utilized for website-building, web hosting, or file-sharing. Exploiting the reputation of these well-known domains helps evade detection, particularly as these platforms are commonly used for legitimate business collaboration.

Additionally, account takeover (ATO) based threats, in which a legitimate account outside the organization is compromised (Vendor Email Compromise) and then used in highly targeted attacks, increased by 350% in 2023. Threat actors also impersonate well-known brands and invest in impersonating the brand of specific organizations that they target. In 2023, 55% of all brand impersonation attacks impersonated the organization that an employee works for.

Email continued to be the top attack vector, with 1 in 5 emails categorized as either malicious or spam. However, threat actors also exploited the expanding user workspace to target organizations in new ways:

  • Phishing attacks via the web browser increased in frequency from 60% of all browser-based attacks in 2022 to nearly 80% of all browser-based attacks in 2023.
  • Malware distribution accounted for 65% of attacks in M365 Apps including OneDrive, SharePoint and Teams.
  • Evasive threats and malware accounted for more than 50% attacks targeting CRMs like Zendesk and Salesforce.

The full report can be viewed here.

Featured

  • Smarter Access Starts with Flexibility

    Today’s workplaces are undergoing a rapid evolution, driven by hybrid work models, emerging smart technologies, and flexible work schedules. To keep pace with growing workplace demands, buildings are becoming more dynamic – capable of adapting to how people move, work, and interact in real-time. Read Now

  • Trends Keeping an Eye on Business Decisions

    Today, AI continues to transform the way data is used to make important business decisions. AI and the cloud together are redefining how video surveillance systems are being used to simulate human intelligence by combining data analysis, prediction, and process automation with minimal human intervention. Many organizations are upgrading their surveillance systems to reap the benefits of technologies like AI and cloud applications. Read Now

  • The Future is Happening Outside the Cloud

    For years, the cloud has captivated the physical security industry. And for good reason. Remote access, elastic scalability and simplified maintenance reshaped how we think about deploying and managing systems. But as the number of cameras grows and resolutions push from HD to 4K and beyond, the cloud’s limits are becoming unavoidable. Bandwidth bottlenecks. Latency lags. Rising storage costs. These are not abstract concerns. Read Now

  • Right-Wing Activist Charlie Kirk Dies After Utah Valley University Shooting

    Charlie Kirk, a popular conservative activist and founder of Turning Point USA, died Wednesday after being shot during an on-campus event at Utah Valley University in Orem, Utah Read Now

  • The Impact of Convergence Between IT and Physical Security

    For years, the worlds of physical security and information technology (IT) remained separate. While they shared common goals and interests, they often worked in silos. Read Now

New Products

  • Camden CM-221 Series Switches

    Camden CM-221 Series Switches

    Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings.

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises.

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area.