Business Email Compromise

Protect your people from socially engineered phishing attacks, with Egress Defend.

Business email compromise is the most common phishing threat


of cybercrime losses reported to FBI caused by BEC


of cyberattacks involve social engineering


has been lost due to BEC attacks

Exploiting your trusted relationships

Business email compromise (BEC) is one of the hardest attack techniques to detect. Threat actors impersonate or hijack a legitimate business email account that belongs to a trusted vendor, CEO, or another executive, using social engineering to trick their target into fraudulently transferring funds or divulging sensitive information.

The signature-based detection in Microsoft 365 native security and secure email gateways (SEGs) cannot detect BEC attacks at the rate modern enterprises need to prevent financial losses, data exfiltration, and reputational damage.

Learn how we stop 38% more phishing attacks than Microsoft 365 alone
Stats V2 BEC
Solutions BEC 1

Egress Defend uses intelligent technology to detect BEC attacks

  • 1 Display name impersonation detection. This is difficult for users to spot, especially on mobile devices, and as the domain is real, it passes SPF checks.
  • 2 Homograph attack. The domain is used to fool the user into thinking this is a genuine email. However, the display name matches that used by an internal user. An internal user with an external domain is treated with suspicion by Egress Defend.
Solutions BEC 2

Natural language processing (NLP) enhances detection of BEC attacks

  • 3 Linguistic analysis. Egress Defend detects that the language used in this email includes credibility statements that incite a sense of urgency and try to deter the user from confirming legitimacy through other means.
  • 4 CEO impersonation. Using NLP, Defend detects that the attacker is posing as the CEO to appear as a trusted and important sender to try to increase the likelihood that the user will engage.
Find out how AI-driven and behavior-based security can help protect your organization
Solutions BEC 3

Cut through the noise to highlight the risks that matter

Reporting on threats such as BEC attacks in your email flows can be manual and slow. Even worse, systems can throw too much unnecessary information at you, making it harder to make timely and effective decisions.

Egress Defend’s intelligence platform provides simplified dashboards and critical insights so that administrators can quickly cut through the noise, identify email security risks, and, where necessary, remediate them.

See for yourself: take the Egress Defend Admin Tour
Solutions BEC 4

Actionable intelligence

Data and analytics should not overwhelm you with information. Augmented threat intelligence into attack types, payload, and supply chain health gives Security teams what they need to take decisive action that mitigate threats.

Our real-time threat feed offers insights and statistics into email details, type of attack, threat levels, authentication checks, communication history, and how your people interacted with the email.

Explore the Egress Security Center

Are you curious about how Egress Defend can safeguard your organization against BEC attacks?


What our customers say

Hear from companies and organizations who use Egress Defend to prevent Business Email Compromise.

Egress Defend scans links and tags emails, making information available to the end-user. This information helps raise awareness among our staff and also helps them learn what to look out for. If a user sees an anti-phishing banner in an email, they can click on it, and it explains to them why the email was flagged.

Trusted by global organizations

Related resources

Learn how our full suite of advanced email protection technologies work together to mitigate both inbound and outbound email risks like business email compromise.

Email Threat Landscape: Phishing Report

Organizations remain vulnerable to advanced phishing threats, including AI-driven attacks and those sent from compromised supply chain accounts.

Download the Email Threat Landscape: Phishing Report for insight into phishing attacks that organizations fell victim to, how these incidents impact the people involved, and attitudes towards traditional email security and training.

KnowBe4 & Egress: Delivering integrated AI-based adaptive email security and training

Join Bas Van Der Hoeven from KnowBe4 and James Sheldrake from Egress to see how their products work together to provide AI-based email security and training.

Customer story: Greater Manchester Mental Health

Greater Manchester Mental Health Trust enhances anti-phishing defenses in Microsoft 365 using Egress Defend and Prevent.

Forrester Total Economic Impact Study

Forrester demonstrates the financial and efficiency benefits that can be achieved by organizations that invest in Egress Intelligent Email Security – including a 359% return on investment.