A recent analysis by Cisco Talos warns about a structural change in digital fraud: the democratization of Business Email Compromise (BEC). Traditionally associated with large corporations, this type of scam is rapidly spreading to smaller and medium-sized organizations, driven by the use of artificial intelligence.
The report, authored by Martin Lee, highlights how cybercriminals have significantly reduced the cost and effort required to carry out such attacks, thereby broadening their reach.
What is BEC and why it's evolving
Business Email Compromise (BEC) is a fraud technique based on identity theft in business communications. Generally, the attacker impersonates:
- A senior executive (CEO, CFO)
- A legitimate supplier
- A financial officer
The goal is to induce the victim to make money transfers or share sensitive information.
Historically, these attacks required:
- Prior research on the target company
- Understanding of its internal structure
- Manual composition of convincing emails
This limited their use to high-value targets.
The introduction of artificial intelligence has completely changed this scenario.
Attackers can now:
- Generate highly credible emails without grammatical errors
- Adapt language to the context of each organization
- Automate large-scale phishing campaigns
- Reduce preparation time from days to minutes
This eliminates one of the main barriers of BEC: manual effort.
From large corporations to small targets
One of the most significant points in the report is the change in the profile of victims.
A documented case shows the impersonation of a financial authority within a local community association, where the target was a relatively low amount. This type of attack would have been unprofitable in the past.
However, today:
- Attacks are cheaper to execute
- They can be directed at multiple targets simultaneously
- Even small frauds prove profitable
This implies that organizations traditionally out of sight are now viable targets.
Why this change is critical
The democratization of BEC introduces several key risks: Higher volume of attacks Lower technical sophistication required Higher success rate due to personalization Difficulty in distinguishing legitimate from fraudulent emails In essence, BEC stops being a targeted attack and becomes a scalable model. Warning signs for BEC attacks The report highlights common patterns that can help detect these scams:
Urgent requests for money transfers Unexpected changes in bank data Messages avoiding usual communication channels Extreme tone of pressure or confidentiality Security recommendations According to Martin Lee, organizations should reinforce their controls with practical measures: Verify financial requests through independent channels Do not rely solely on email content Implement validation processes for transfers Train employees in advanced phishing detection Establish clear policies for payment or account changes Conclusion The Cisco Talos report confirms a clear trend: artificial intelligence is transforming BEC fraud into an accessible, scalable, and global threat. What was once a targeted attack against large corporations now affects organizations of all sizes. Cost reduction and automation allow cybercriminals to operate with greater reach and efficiency. In this new context, no organization is too small to be a target. The trust in email, one of the pillars of business communication, has also become one of its most vulnerable points.