Report: GenAI Drives 1,760% Surge in Business Email Compromise Attacks

A report recently published by Perception Point, a provider of advanced email and workspace security solutions, has identified a 1,760% year-on-year increase in social engineering-based Business Email Compromise (BEC) attacks over the course of 2023. Perception Point's '2024 Annual Report: Cybersecurity Trends & Insights' highlights how threat actors are leveraging increasingly accessible GenAI tools to scale and craft highly sophisticated and novel social engineering attacks. Also reported was a substantial shift to attacks using evasive tactics, including quishing (QR code phishing) and two-step phishing, that bypass traditional security systems. The report's findings are based on in-depth analysis by Perception Point's Incident Response team and data collected from the company's threat detection platform.

The past year has been defined by unprecedented advances in the capabilities and accessibility of GenAI, which malicious actors have harnessed to enhance and scale cyberattacks. In particular, GenAI has fueled the phenomenal growth in BEC attacks, facilitating incredibly well-crafted and targeted social engineering-based attacks that are challenging to detect. Whereas BEC attacks accounted for only 1% of all cyberattacks in 2022, their proportion of the total rose to 18.6% of all attacks in 2023.

A deeper exploration of 2023's most prominent attack trends reveal a number of other concerning developments that threaten the modern organization's workspace, which encompasses email, web browsers, and cloud collaboration channels.

Phishing is still the top cyber threat, accounting for more than 70% of all attacks, with little change from the previous year. But quishing emerged as a new trending threat in 2023, accounting for 2.7% of all phishing attempts. Attackers are exploiting the prevalence and inherent trust of QR codes in modern life to turn a straightforward scan into a serious threat. Throughout 2023, 1 out of 18 (6%) QR codes sent via email were malicious.

Over the year, the prevalence of two-step phishing attacks increased by 175%. These attacks are particularly deceptive as unlike traditional phishing methods, their multi-stage character makes them especially hard to detect. In these attacks, threat actors exploit legitimate services and hosting sites, often utilized for website-building, web hosting, or file-sharing. Exploiting the reputation of these well-known domains helps evade detection, particularly as these platforms are commonly used for legitimate business collaboration.

Additionally, account takeover (ATO) based threats, in which a legitimate account outside the organization is compromised (Vendor Email Compromise) and then used in highly targeted attacks, increased by 350% in 2023. Threat actors also impersonate well-known brands and invest in impersonating the brand of specific organizations that they target. In 2023, 55% of all brand impersonation attacks impersonated the organization that an employee works for.

Email continued to be the top attack vector, with 1 in 5 emails categorized as either malicious or spam. However, threat actors also exploited the expanding user workspace to target organizations in new ways:

  • Phishing attacks via the web browser increased in frequency from 60% of all browser-based attacks in 2022 to nearly 80% of all browser-based attacks in 2023.
  • Malware distribution accounted for 65% of attacks in M365 Apps including OneDrive, SharePoint and Teams.
  • Evasive threats and malware accounted for more than 50% attacks targeting CRMs like Zendesk and Salesforce.

The full report can be viewed here.

Featured

  • Report Reveals Security Training Reduces Global Phishing Click Rates by 86%

    KnowBe4, the cybersecurity platform that comprehensively addresses human risk management, today launched its “Phishing by Industry Benchmarking Report 2025” which measures an organization’s Phish-prone Percentage (PPP) — the percentage of employees likely to fall for social engineering or phishing attacks, indicating the organization’s overall susceptibility to phishing threats. This year’s report found a global average baseline PPP of 33.1%, meaning a third of employees interact with phishing simulations before taking part in best-practice security awareness training (SAT).COVER 2025-PIB-NA-Report_EN-US Read Now

  • TSA Begins REAL ID Full Enforcement Today

    Today, the Transportation Security Administration (TSA) announced the imminent implementation of its REAL ID enforcement measures at TSA checkpoints nationwide. Read Now

  • Body-Worn Cameras on the Rise

    On the evening of Oct. 29, 2024, the owner of 300 Guard based in Houston, was shot while on duty at a convenience store. He returned fire. He was wearing a plated vest and thankfully recovered in the hospital. Read Now

  • Brazil Port Enhances Surveillance and Supports Wildlife Conservation with Sustainable Technology

    Ferroport, which operates the iron ore terminal at the Port of Açu in São João da Barra, Rio de Janeiro, Brazil, has deployed state-of-the-art video surveillance cameras from Axis Communications to enhance nighttime security and visibility, while decreasing environmental impact and prioritizing sustainability. With cutting-edge technology, the port now has precise surveillance cameras that capture high-quality nighttime images, while reducing the amount of artificial lighting that negatively impacts the surrounding ecosystem. Read Now

  • Fast-Forward from 1,000 B.C.E. to Today

    The lock and key have been around since time immemorial. In fact, the locksmith profession is one of the oldest in the world when you consider the earliest wooden tumbler lock debuted three-plus millennia ago. Read Now

New Products

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.

  • EasyGate SPT and SPD

    EasyGate SPT SPD

    Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.

  • Automatic Systems V07

    Automatic Systems V07

    Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file.