SolarWinds-style email compromise attacks go mainstream

The supply chain attack involving SolarWinds software last year has caused ripples throughout the cybersecurity industry, not least because it went undetected for nine months. The attack was able to bypass traditional email security by exploiting trusted communications routes between vendors and customers. A worrying new report from Abnormal Security shows that this technique is becoming a mainstream attack vector. Between the third quarter of 2020 and January 2021, the chance of companies getting hit with a vendor email compromise (VEC) attack during any given week increased 82 percent with the potential cost through various forms of fraud being as… [Continue Reading]