Microsoft 365 Defender research team says it has “disrupted a large-scale business email compromise infrastructure hosted in multiple web services” The researchers describe in detail the attack flow, from the initial credential theft to stealing data, including financial transaction details. Microsoft recommends Office 365 users deploy advanced pre-breach protection tools with capabilities such as a multilayered email filtering stack with edge protection, sender intelligence, content filtering and post-delivery protection. The FBI predicts that BEC attacks will continue to double each year, hitting over $5 billion each year.”]
Source: https://www.cuinfosecurity.com/behind-scenes-business-email-compromise-attack-a-16887