There’s been a major increase in what the FBI calls Business Email Compromise, also known as CEO Fraud, amounting to losses in the billion dollar range.
KnowBe4 has been warning against this kind of threat for a while now, and our platform is able to simulate CEO fraud phishing attacks to inoculate your employees against this type of attack, even optionally tracking and keeping the data from replies with our "reply-to" feature to see how vulnerable your users are.
The following is recommended when creating a CEO fraud template:
Sender's Email Address: In this field use the email address of your CEO or another high-level executive. Target a group made up of high-risk executives, for instance, Accounting or HR.
Sender's Name: (optional but recommended) This field will let you assign a Sender’s Name which will appear on the phishing email next to the Sender’s Email Address. Having the Sender’s name will make the attack look more real.
Reply-To Email Address: (optional--will be automatically replaced if "reply-to phishing" is turned on in your phishing campaign) To help prevent users from replying to the executive email address placed in the “Sender’s Email Address” field, you can assign any other email address that you would like the user to reply to when they click “Reply” on the phishing template they received.
Reply-To Name: (optional--using this will customize a portion of your reply-to email address when your users reply to phishing emails) If you've specified a "Reply-To" name in your email template, the console will use some of that information to populate the first portion of the sender email address.
Body: Here you can use the WYSIWYG editor to edit the body of your phishing email. If you’d like to use HTML, there is a “Source” button towards the top left which you can click to edit the source code. Near the Source button is the Image button, where you may add any externally-hosted images using a publicly-accessible URL.
There are premade examples of business email compromise and CEO fraud templates in the console, found under the Reply-To Only category of templates. Note that these templates are meant to track replies only, and do not contain links or attachments. You can also find several other examples of CEO Fraud by typing "CEO Fraud" in the search bar beneath the Phishing-->Email Templates-->System Templates portion of the console.