Design Highlights
- Business Email Compromise (BEC) accounted for 58% of all cyber claims in 2026, highlighting its prevalence in cyber incidents.
- The average loss per BEC incident reached $137,000 in 2024, showcasing the significant financial impact on businesses.
- Phishing emails initiate 95% of BEC attacks, reflecting the simplicity and effectiveness of the methods used by criminals.
- Geographic trends show a dramatic rise in BEC incidents, with a 123.8% increase in Europe alone, expanding the threat landscape.
- Companies lacking cyber liability insurance face potentially catastrophic losses, driving demand for coverage in light of increasing BEC attacks.
Business Email Compromise (BEC) is the cybercriminal’s favorite playground, and it’s wreaking havoc. This isn’t just a minor nuisance; it’s a major financial disaster that companies can’t afford to ignore. In 2026, BEC and its sidekick, funds transfer fraud (FTF), accounted for a staggering 58% of all claims. That’s right, more than half of the cyber claims out there are tied to this sneaky tactic. Just think about that for a moment.
In 2024, BEC attacks were responsible for 73% of all reported cyber incidents. It’s like the email version of a home invasion, but instead of a masked bandit, you’ve got a slick hacker lurking behind a keyboard. And let’s be clear: these attacks are not cheap. The average loss per BEC incident skyrocketed to $137,000 in 2024, an 83% jump since 2019. That’s a lot of dough.
For businesses that fall victim to BEC, the financial hit averages a jaw-dropping $4.67 million per attack. Talk about a wake-up call. The aggregate losses from BEC scams over the past decade have exceeded $55.5 billion globally. Yes, billion with a “B.” In 2024 alone, BEC caused about $2.9 billion in losses. It’s no wonder that in a single year, Americans lost a staggering $16.6 billion to cyber fraud, a 33% increase from the previous year.
If BEC were a country, it would have a GDP that outstrips many small nations. The methods used in BEC are often painfully simple. A whopping 95% of these attacks kick off with phishing emails. It’s almost laughable how easy it is for these criminal geniuses. And then there’s social engineering—71% of FTF claims stem from it. It’s a game of deception, and the crooks are winning.
Geographically, the U.S. is a hotspot for BEC, racking up reported losses of $2.9 billion. Meanwhile, Europe saw a mind-blowing 123.8% increase in BEC attacks within a year. It’s spreading like a bad cold, and businesses everywhere are left scrambling. Additionally, the 2026 Cyber Claims Report indicates that cyber insurance claims are rising too, up about 13% each year. Yet, only 74% of companies even have specific cybercrime insurance. So, while companies are getting hit harder than ever, many are left without the safety net they desperately need. Businesses without cyber liability insurance face potentially catastrophic out-of-pocket losses, as standard business policies are unlikely to cover the financial damages stemming from BEC attacks. Welcome to the world of BEC, where the stakes are high and the losses are even higher.
