Professional paper
https://doi.org/10.17818/EMIP/2025/41
RESILIENCE AGAINST BUSINESS EMAIL COMPROMISE: A CORPORATE CASE STUDY
Lukáš Václavík
; University of Technology, Faculty of Business and Management, Czech Republic
*
Jan Špatenka
; University of Technology, Faculty of Business and Management, Czech Republic
Kateřina Petrová
; University of Technology, Faculty of Business and Management, Czech Republic
* Corresponding author.
Abstract
This paper presents a case study of a Business Email Compromise (BEC) attack and its impact on a company’s operations. The research employed qualitative methods, including semi-structured interviews with corporate stakeholders and a literature review, to examine the state of organizational cybersecurity and identify lessons learned from cyber fraud incidents. The findings show that regular cybersecurity training, external email tagging, and robust internal communication protocols significantly reduce fraud risks. In particular, verification procedures for financial transactions and changes to banking details were identified as critical safeguards. The study highlights that cybersecurity is not merely a technical issue but a strategic business concern requiring a holistic, organization-wide approach. Human factor plays a pivotal role, and organizations must combine technical controls with employee awareness and management oversight. Practical recommendations are provided to enhance resilience against BEC attacks, especially in international contexts where trust between business partners can be exploited.
Keywords
Cyber-attack; BEC; cybersecurity; social engineering; phishing; cyber fraud
Hrčak ID:
347194
URI
Publication date:
15.5.2026.
Visits: 0 *