Subscribe
Subscribe
A Successful Security Strategy Is All About Relationships. Here’s How to Build Them.
Security efforts are not limited to security teams. High impact strategies need to engage everyone from employees to the board of execs, DevOps teams and IT. Learn how how to become not just an effective partner but a trusted advisor across an organization.
https://www.humanlayersecurity.com/blog/relationship-framework-for-security-leaders/
Your Legacy Phishing Solution Isn’t Enough to Protect Your Organization
CISO Josh Yavor explains why legacy phishing solutions aren't effective in preventing successful attacks, and what you can do about it.
https://www.humanlayersecurity.com/blog/human-layer-security-vs-legacy-solutions/
9 Things I’ve Learned Writing Phishing Emails
Ethical hacker, Craig Hays, explains why copywriting, timing, and context are all essential "ingredients" in crafting a phishing attack.
https://www.humanlayersecurity.com/blog/9-things-i-learned-writing-phishing-emails/
Employee Burnout Will Probably Cause Your Next Data Breach
Understanding how stress impacts cybersecurity behaviors could significantly reduce the chances of people’s mistakes compromising company’s security.
https://www.humanlayersecurity.com/blog/employee-burnout-causes-breaches/
Stateful Machine Learning is Our Best (And Only) Bet
Traditional machine learning methods that are used to detect threats at the machine layer aren’t equipped to account for the complexities of human relationships and behaviors across businesses over time. There is no concept of “state” — the additional variable that makes human-layer security problems so complex.
https://www.humanlayersecurity.com/blog/stateful-machine-learning/
How Easy Is It to Phish?
You don't have to be tech savvy to become a "hacker". This blog outlines how to create a phishing campaign, and was designed to help security leaders protect their organizations.
https://www.humanlayersecurity.com/blog/how-to-create-a-phishing-campaign/

Read More

Explore Human Layer Security.

Learn About Our Mission
Explore Me
Read More
Share

Season 3, Episode 12

March 23rd, 2022

How does Business Email Compromise work? Who is behind the attacks? And how do you get the money back?

In this episode, Tim Sadler is joined by Andrew Frey, a Forensic Financial Analyst for the San Francisco Field Office of the U.S. Secret Service, working in the Cyber Fraud Task Force. As one of the most knowledgeable people in the US government on the threat of Business Email Compromise, Andrew works directly with companies and individuals to gather intelligence on cybercriminals behind these attacks and helps recover lost funds when wire fraud has occurred.  He shares stories of attacks he’s investigated and explains what businesses need to do should they fall victim to BEC attacks.

You can also visit the Secret Service website at https://www.secretservice.gov/ to find out more information.