A newly discovered cybercriminal gang is putting a twist on business email compromise scams by initially targeting vendors or suppliers with phishing emails and then sending realistic-looking invoices to their customers in order to steal money, according to the security firm Agari. The researchers label this new approach “vendor email compromise.”

Read full article on bankinfosecurity.com