This e-book introduces Proofpoint’s Email Fraud Taxonomy, designed to help CISOs classify and mitigate business email compromise (BEC), which cost $1.8B in 2020. It breaks BEC into three layers: Identity (employee, supplier, unknown), Deception (impersonation, compromise, none), and Theme (invoice fraud, payroll redirects, extortion, lures/tasks, gift carding, advance fee fraud). Each theme is illustrated with real-world cases, such as supplier invoice fraud and payroll diversions. The taxonomy highlights nuances like hybrid attacks combining impersonation and compromise. With practical mapping, the framework enables organizations to better recognize and block sophisticated social engineering schemes.

Join for free to read