Over 90% More BEC Threats Stopped Using Generative AI, Saved Millions of Dollars

Moffatt & Nichol

As a global infrastructure advisory firm, Moffatt & Nichol provides engineering and consulting services to clients in the marine terminal, transportation, energy, environmental, federal, and urban development markets around the world.

At Moffatt & Nichol, threat actors were using Business Email Compromise (BEC) to initiate vendor impersonation and invoice fraud against the company through a multi-stage attack. Lookalike domains were used and emails were coming from free Gmail accounts to evade IP reputation detection. The company was vulnerable to attacks launched using Google, Adobe, Dropbox, and other widely used trusted domains. The bad actors first “instructed” a company user to provide a mobile number for the next stage of an attack. Then, the bad actors requested wire payments to the attacker’s account.

Moffatt & Nichol implemented SlashNext’s Cloud Email Security, plus protection for SMS, Slack, Zoom, Teams, Gmail, and other messaging apps for AI-powered platform combining natural language processing, computer vision, and machine learning with relationship graphs, generative AI, and deep contextualization immediately detected 92% more multi-stage BEC and natural language attacks in the first 30 days after deployment.

SlashNext Email+ Security immediately detected 92% more multi-stage BEC and natural language attacks in the first 30 days after deployment. The types of attacks included BEC impersonation, invoice fraud, payroll theft, and others, in addition to social engineering threats associated with purchase renewals, beneficiary information, donations, investments, and loans. SlashNext found a significantly high number of users targeted with threats that included executive impersonation, payroll theft, and invoice fraud.

The Challenge

Security didn’t stop sophisticated multi-stage spear phishing, malicious attachments, and BEC vendor impersonation, invoice fraud, and others; attacks evaded IP reputation detection

The Solution

SlashNext multi-channel Email+ mobile and browser phishing protection; generative AI security protects against spear phishing, BEC, smishing, social engineering attacks, and others

The Result

Caught 92% more BEC attacks in first month, many of which targeted C-Level employees; saved company millions of dollars from losses

A Complete Cloud Security Platform to Stop the Most Evasive Threats in Real-Time

Keep users safe with a more effective approach that uses natural language processing, computer vision, and machine learning with relationship graphs, generative AI, and deep contextualization to stop zero-hour threats in real-time with 99.9% accuracy and 1 in 1 million false positives. This unique combination of techniques sees through evasion tactics and accurately detects threats, even those hosted on compromised websites and legitimate infrastructure.

Play Video
Blue on Black quotation mark
“We found a lot of value in their (phishing) protection. Overall a great addition to our cybersecurity protection suite.”
Jason Jewitt, CIO, Moffatt & Nichol

SlashNext for Microsoft 365 Stops the Broadest Range of Zero-Hour Attacks

SlashNext HumanAI stops email threats that compromise users and lead to data breaches.

 

Microsoft 365 + SlashNext for Complete Email Security

SlashNext helps Microsoft 365  customers protect themselves from the growing number of advanced phishing attacks occurring today and tomorrow.

Microsoft 365 + SlashNext for Complete Email Security

See SlashNext Complete™
in Action

Meet with a security expert for a demo and learn how to set up a personalized trial to see the threats entering your organization.