Looks Like Russian Hackers Are on An Email Scam Spree

                                                By Tim Sadler, CEO, Tessian



            In 2019, businesses lost a staggering $1.8bn because of Business Email Compromise (BEC). These
            types of attacks, whereby a trusted relationship is compromised through email impersonation or email
            account hacking, are becoming more common and also more successful. The reason? First, they are
            easier  and  cost-effective  to  carry  out,  making  such  attack  methods  attractive  and  lucrative  for
            cybercriminals. Second, to improve the success rate of their scams, hackers are making it much more
            difficult for their victims to detect that they are being targeted.

            In fact, just recently, researchers identified a cybercriminal gang called Cosmic Lynx that has carried out
            more than 200 BEC campaigns since July last year, in attempts to steal as much as $2.7m from Fortune
            500 or Global 2000 companies. Believed to be the first reported case of a BEC gang  operating from
            Russia, the group delivers sophisticated and creative email campaigns that target senior executives,
            tailoring their messages to discuss legitimate mergers and acquisitions.



            Why Cosmic Lynx is cause for concern

            BEC  scams  are  not,  traditionally,  this group’s  method  of attack.  However,  as BEC offers a  lucrative
            opportunity to steal millions of dollars in just a few emails, it appears that this Russian cyber gang is
            changing its tact.








            Cyber Defense eMagazine – August 2020 Edition                                                                                                                                                                                                                        88
            Copyright © 2020, Cyber Defense Magazine.  All rights reserved worldwide.