Ekonomska misao i praksa, , 2026.
Stručni rad
https://doi.org/10.17818/EMIP/2025/41
RESILIENCE AGAINST BUSINESS EMAIL COMPROMISE: A CORPORATE CASE STUDY
Lukáš Václavík
orcid.org/0000-0002-8551-9009
; Tehnološko sveučilište u Brnu, Češka Republika, Fakultet za poslovanje i menadžment
*
Jan Špatenka
; Tehnološko sveučilište u Brnu, Češka Republika, Fakultet za poslovanje i menadžment
Kateřina Petrová
; Tehnološko sveučilište u Brnu, Češka Republika, Fakultet za poslovanje i menadžment
* Dopisni autor.
Sažetak
This paper presents a case study of a Business Email Compromise (BEC) attack and its impact on a company’s operations. The research employed qualitative methods, including semi-structured interviews with corporate stakeholders and a literature review, to examine the state of organizational cybersecurity and identify lessons learned from cyber fraud incidents. The findings show that regular cybersecurity training, external email tagging, and robust internal communication protocols significantly reduce fraud risks. In particular, verification procedures for financial transactions and changes to banking details were identified as critical safeguards. The study highlights that cybersecurity is not merely a technical issue but a strategic business concern requiring a holistic, organization-wide approach. Human factor plays a pivotal role, and organizations must combine technical controls with employee awareness and management oversight. Practical recommendations are provided to enhance resilience against BEC attacks, especially in international contexts where trust between business partners can be exploited.
Ključne riječi
Cyber-attack; BEC; cybersecurity; social engineering; phishing; cyber fraud
Hrčak ID:
336383
URI
Datum izdavanja:
9.10.2025.
Posjeta: 615 *