Saltar al contenido principal

CISO Guide to Vendor Email Compromise

Learn how and why attackers leverage compromised accounts from vendors to launch attacks impersonating your supply chain.

Información clave

Vendor email compromise (VEC) occurs when threat actors hijack a vendor's email account to steal money from the vendor's known contacts.

VEC attacks are actively bypassing traditional email security controls.

VEC is also classified as supply chain compromise, reflecting its third-party risk origin.

Vendor email compromise, also referred to as supply chain compromise, is a significant security threat to enterprise organizations. This form of attack occurs when a threat actor gains control of a vendor email account and then uses it to steal money from known contacts.

Now more than ever, it's important to understand your vendor risk and block the attacks sent from compromised accounts.

Download the CISO Guide to Vendor Email Compromise to learn:

  • What types of attacks are launched by compromised vendors

  • How these attacks are bypassing traditional email security

  • Which tools you can leverage to block VEC and protect your organization

Fill out the form to get your copy today.

Earn ISC2 CPE (1 credit)

This resource is ISC2 CPE eligible. Submit the credit form to claim your continuing-education credits.

Claim Your ISC2 Credit

See Abnormal in Action

See how behavioral AI detects the attacks that legacy defenses miss.

Request a Demo