IR Hotline Numbers:

+44 20 3318 1470
+60 154 877 0076
+61 2 7908 1745
+65 3165 8788
caution icon

Experienced a breach? Reach us now

company logo
banner image

Business Email Compromise Response

Never trust an email

Haven't been hit by a BEC yet? Contact us to help set up your systems to make sure they can't get in.

What is Business Email Compromise?

A Business Email Compromise (BEC) is a type of cyber-attack where a Threat Actor uses social engineering techniques to gain access to a business email account. They can then use this access to send fraudulent emails that trick employees, customers or partners into transferring money or sensitive information to the cybercriminal.

Having an incident response team to investigate a BEC is important because we can quickly identify the source of the breach, determine the extent of the damage, and take steps to contain and mitigate the attack. We can also help you to identify vulnerabilities in your email security systems and implement stronger safeguards to prevent future attacks.

What should I do first?

If you suspect that you may be a victim of an email compromise you should immediately stop using the account and contact us for help. To speak with a member of the Pragma team call the local number displayed on the website or Contact us to chat. We recommend you don't contact us by email if you think attackers may be reading what you send.

Why Choose Pragma?

Pragma's experienced Incident Response team have the expertise and tools necessary to quickly identify and contain the attack. We will help you to contain and eradicate the Threat Actor quickly and ensure that all affected accounts and Threat Activity is identified. Without our support the Threat Actor may retain access to the email account, or other compromised accounts, and be exfiltrating data from your network.

Pragma will ensure that the effects in the incident are minimised and get you back to normal operations as soon, and as safely as possible.

What is our Business Email Compromise service response?

Pragma provides support within one hour of contact being made, offering immediate advice on removing Threat Actors from the network and reviewing the entire tenant for further suspicious activity.

Delayed reactions from clients can result in lost logs and increased data loss. Effective containment and eradication is crucial to prevent further compromise of accounts and company data.

Pragma's Incident Responders work closely with clients to contain the incident and provide regular updates on the investigation findings.

Pragma assists in the recovery process and identifies compromised and/or exported data. This support is especially important in reportable breaches where significant fines may be incurred.

Incident Responders have extensive experience in cyber forensics and come from a variety of backgrounds, including law enforcement, military, and private sector.

Pragma's forensic processes are certified by CREST, the industry standard for cyber forensics.

Pragma is a global company with sites in Singapore, the United Kingdom and Australia. We have responders around the world and will be able to support you through your incident wherever you are located.

Join the Pragma Community Today



Cyber Advisory

Technology Risk

Compliance, Conduct, and Regulatory Risk

IT Audit


Pragma Logo

Terms & conditions

Privacy Policy