If you weren’t among the 3,500 fellow security pros packing the halls at Gartner Security Summit this year to learn, debate and network, you should know that yet again, a hot topic of the event – reflected in Gartner analyst Neil MacDonald’s “Top 10 Cybersecurity Challenges” session – is the email forwarded from an annoyed CEO, that simply reads:


Those dreaded question marks often mean one thing to a CISO: that a malicious email or targeted phish has slipped past their security defenses, and into their executive’s inbox.

I hear this problem repeatedly from CISOs across the country. Attackers are successfully launching phishing campaigns that easily evade defenses and don’t even require links or attachments to wreak havoc. Business Email Compromise (BEC) – also referred to as CXO fraud or Impostor attacks – is effective at slipping past traditional defenses, including Office 365, Gmail and Secure Email gateways – and has caused more than $12 billion in business losses over the past five years.

Read this blog to learn why is BEC fraud getting so much attention.