{"id":"https://openalex.org/W4386408787","doi":"https://doi.org/10.3390/jcp3030029","title":"Business Email Compromise (BEC) Attacks: Threats, Vulnerabilities and Countermeasures\u2014A Perspective on the Greek Landscape","display_name":"Business Email Compromise (BEC) Attacks: Threats, Vulnerabilities and Countermeasures\u2014A Perspective on the Greek Landscape","publication_year":2023,"publication_date":"2023-09-02","ids":{"openalex":"https://openalex.org/W4386408787","doi":"https://doi.org/10.3390/jcp3030029"},"language":"en","primary_location":{"id":"doi:10.3390/jcp3030029","is_oa":true,"landing_page_url":"https://doi.org/10.3390/jcp3030029","pdf_url":"https://www.mdpi.com/2624-800X/3/3/29/pdf?version=1693622170","source":{"id":"https://openalex.org/S4210232532","display_name":"Journal of Cybersecurity and Privacy","issn_l":"2624-800X","issn":["2624-800X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Cybersecurity and Privacy","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://www.mdpi.com/2624-800X/3/3/29/pdf?version=1693622170","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5027844684","display_name":"\u0391\u03bd\u03b1\u03c3\u03c4\u03ac\u03c3\u03b9\u03bf\u03c2 \u03a0\u03b1\u03c0\u03b1\u03b8\u03b1\u03bd\u03b1\u03c3\u03af\u03bf\u03c5","orcid":"https://orcid.org/0009-0004-5505-1566"},"institutions":[{"id":"https://openalex.org/I194019607","display_name":"University of Ioannina","ror":"https://ror.org/01qg3j183","country_code":"GR","type":"education","lineage":["https://openalex.org/I194019607"]},{"id":"https://openalex.org/I4210160935","display_name":"Hellenic Police Academy","ror":"https://ror.org/05qej6276","country_code":"GR","type":"education","lineage":["https://openalex.org/I4210160935"]}],"countries":["GR"],"is_corresponding":true,"raw_author_name":"Anastasios Papathanasiou","raw_affiliation_strings":["Cyber Crime Division, Hellenic Police, 173 Alexandras Avenue, 11522 Athens, Greece","Department of Informatics and Telecommunications, University of Ioannina, Kostaki Artas, 47150 Arta, Greece"],"raw_orcid":"https://orcid.org/0009-0004-5505-1566","affiliations":[{"raw_affiliation_string":"Cyber Crime Division, Hellenic Police, 173 Alexandras Avenue, 11522 Athens, Greece","institution_ids":["https://openalex.org/I4210160935"]},{"raw_affiliation_string":"Department of Informatics and Telecommunications, University of Ioannina, Kostaki Artas, 47150 Arta, Greece","institution_ids":["https://openalex.org/I194019607"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5038428366","display_name":"George Liontos","orcid":null},"institutions":[{"id":"https://openalex.org/I194019607","display_name":"University of Ioannina","ror":"https://ror.org/01qg3j183","country_code":"GR","type":"education","lineage":["https://openalex.org/I194019607"]}],"countries":["GR"],"is_corresponding":false,"raw_author_name":"George Liontos","raw_affiliation_strings":["Department of Materials Science and Engineering, University of Ioannina, 45110 Ioannina, Greece"],"raw_orcid":"https://orcid.org/0009-0008-7197-2196","affiliations":[{"raw_affiliation_string":"Department of Materials Science and Engineering, University of Ioannina, 45110 Ioannina, Greece","institution_ids":["https://openalex.org/I194019607"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5102993627","display_name":"Vasiliki Liagkou","orcid":"https://orcid.org/0000-0002-1162-5490"},"institutions":[{"id":"https://openalex.org/I194019607","display_name":"University of Ioannina","ror":"https://ror.org/01qg3j183","country_code":"GR","type":"education","lineage":["https://openalex.org/I194019607"]}],"countries":["GR"],"is_corresponding":true,"raw_author_name":"Vasiliki Liagkou","raw_affiliation_strings":["Department of Informatics and Telecommunications, University of Ioannina, Kostaki Artas, 47150 Arta, Greece"],"raw_orcid":"https://orcid.org/0000-0002-1162-5490","affiliations":[{"raw_affiliation_string":"Department of Informatics and Telecommunications, University of Ioannina, Kostaki Artas, 47150 Arta, Greece","institution_ids":["https://openalex.org/I194019607"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5031438015","display_name":"Euripidis Glavas","orcid":"https://orcid.org/0000-0002-5604-3507"},"institutions":[{"id":"https://openalex.org/I194019607","display_name":"University of Ioannina","ror":"https://ror.org/01qg3j183","country_code":"GR","type":"education","lineage":["https://openalex.org/I194019607"]}],"countries":["GR"],"is_corresponding":false,"raw_author_name":"Euripidis Glavas","raw_affiliation_strings":["Department of Informatics and Telecommunications, University of Ioannina, Kostaki Artas, 47150 Arta, Greece"],"raw_orcid":"https://orcid.org/0000-0002-5604-3507","affiliations":[{"raw_affiliation_string":"Department of Informatics and Telecommunications, University of Ioannina, Kostaki Artas, 47150 Arta, Greece","institution_ids":["https://openalex.org/I194019607"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5027844684","https://openalex.org/A5102993627"],"corresponding_institution_ids":["https://openalex.org/I194019607","https://openalex.org/I4210160935"],"apc_list":{"value":1000,"currency":"CHF","value_usd":1082},"apc_paid":{"value":1000,"currency":"CHF","value_usd":1082},"fwci":8.1565,"has_fulltext":true,"cited_by_count":19,"citation_normalized_percentile":{"value":0.97519919,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":"3","issue":"3","first_page":"610","last_page":"637"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12519","display_name":"Cybercrime and Law Enforcement Studies","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12519","display_name":"Cybercrime and Law Enforcement Studies","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.995199978351593,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9929999709129333,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/compromise","display_name":"Compromise","score":0.8918602466583252},{"id":"https://openalex.org/keywords/cybercrime","display_name":"Cybercrime","score":0.7035971879959106},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6345831155776978},{"id":"https://openalex.org/keywords/confidentiality","display_name":"Confidentiality","score":0.6054614782333374},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.602156400680542},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.5944303274154663},{"id":"https://openalex.org/keywords/perspective","display_name":"Perspective (graphical)","score":0.5079310536384583},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.4734765291213989},{"id":"https://openalex.org/keywords/social-engineering","display_name":"Social engineering (security)","score":0.4714841842651367},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.27879297733306885},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.21724313497543335},{"id":"https://openalex.org/keywords/political-science","display_name":"Political science","score":0.19865790009498596},{"id":"https://openalex.org/keywords/law","display_name":"Law","score":0.11205786466598511}],"concepts":[{"id":"https://openalex.org/C46355384","wikidata":"https://www.wikidata.org/wiki/Q726686","display_name":"Compromise","level":2,"score":0.8918602466583252},{"id":"https://openalex.org/C2779390178","wikidata":"https://www.wikidata.org/wiki/Q29137","display_name":"Cybercrime","level":3,"score":0.7035971879959106},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6345831155776978},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.6054614782333374},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.602156400680542},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.5944303274154663},{"id":"https://openalex.org/C12713177","wikidata":"https://www.wikidata.org/wiki/Q1900281","display_name":"Perspective (graphical)","level":2,"score":0.5079310536384583},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.4734765291213989},{"id":"https://openalex.org/C70118762","wikidata":"https://www.wikidata.org/wiki/Q376934","display_name":"Social engineering (security)","level":2,"score":0.4714841842651367},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.27879297733306885},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.21724313497543335},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.19865790009498596},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.11205786466598511},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.0},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.3390/jcp3030029","is_oa":true,"landing_page_url":"https://doi.org/10.3390/jcp3030029","pdf_url":"https://www.mdpi.com/2624-800X/3/3/29/pdf?version=1693622170","source":{"id":"https://openalex.org/S4210232532","display_name":"Journal of Cybersecurity and Privacy","issn_l":"2624-800X","issn":["2624-800X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Cybersecurity and Privacy","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:b7f8565a4c0541fba4e1f456fbf55957","is_oa":true,"landing_page_url":"https://doaj.org/article/b7f8565a4c0541fba4e1f456fbf55957","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Journal of Cybersecurity and Privacy, Vol 3, Iss 3, Pp 610-637 (2023)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.3390/jcp3030029","is_oa":true,"landing_page_url":"https://doi.org/10.3390/jcp3030029","pdf_url":"https://www.mdpi.com/2624-800X/3/3/29/pdf?version=1693622170","source":{"id":"https://openalex.org/S4210232532","display_name":"Journal of Cybersecurity and Privacy","issn_l":"2624-800X","issn":["2624-800X"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Cybersecurity and Privacy","raw_type":"journal-article"},"sustainable_development_goals":[{"score":0.7900000214576721,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[{"id":"https://openalex.org/G1337233005","display_name":null,"funder_award_id":"NSRF 2014-2020","funder_id":"https://openalex.org/F4320320300","funder_display_name":"European Commission"},{"id":"https://openalex.org/G5256125966","display_name":null,"funder_award_id":"MIS 5047221","funder_id":"https://openalex.org/F4320335322","funder_display_name":"European Regional Development Fund"},{"id":"https://openalex.org/G5634946813","display_name":null,"funder_award_id":"2014-2020","funder_id":"https://openalex.org/F4320335322","funder_display_name":"European Regional Development Fund"},{"id":"https://openalex.org/G6870533126","display_name":null,"funder_award_id":"2014-2020","funder_id":"https://openalex.org/F4320320300","funder_display_name":"European Commission"},{"id":"https://openalex.org/G7538097724","display_name":null,"funder_award_id":"NSRF 2014-2020","funder_id":"https://openalex.org/F4320335322","funder_display_name":"European Regional Development Fund"}],"funders":[{"id":"https://openalex.org/F4320320300","display_name":"European Commission","ror":"https://ror.org/00k4n6c32"},{"id":"https://openalex.org/F4320335322","display_name":"European Regional Development Fund","ror":"https://ror.org/00k4n6c32"}],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W4386408787.pdf"},"referenced_works_count":29,"referenced_works":["https://openalex.org/W1973697585","https://openalex.org/W2153245338","https://openalex.org/W2317643927","https://openalex.org/W2520446626","https://openalex.org/W2532117426","https://openalex.org/W2606168494","https://openalex.org/W2784017372","https://openalex.org/W2808481102","https://openalex.org/W2811092272","https://openalex.org/W2933127114","https://openalex.org/W2951835514","https://openalex.org/W2965877922","https://openalex.org/W3001032004","https://openalex.org/W3009207988","https://openalex.org/W3087759536","https://openalex.org/W3114967293","https://openalex.org/W3138207412","https://openalex.org/W3140229203","https://openalex.org/W3158115510","https://openalex.org/W3193490676","https://openalex.org/W4240029999","https://openalex.org/W4243208103","https://openalex.org/W4251323996","https://openalex.org/W4283022488","https://openalex.org/W4312175825","https://openalex.org/W4323054349","https://openalex.org/W6682640309","https://openalex.org/W6699343175","https://openalex.org/W6752126486"],"related_works":["https://openalex.org/W4387497383","https://openalex.org/W3183948672","https://openalex.org/W3173606202","https://openalex.org/W3110381201","https://openalex.org/W2948807893","https://openalex.org/W2778153218","https://openalex.org/W2758277628","https://openalex.org/W1531601525","https://openalex.org/W2911255625","https://openalex.org/W4319151772"],"abstract_inverted_index":{"Business":[0],"Email":[1],"Compromise":[2],"(BEC)":[3],"attacks":[4,56],"have":[5],"emerged":[6],"as":[7,157,159],"serious":[8],"threats":[9],"to":[10,20,68,77,95,126,130],"organizations":[11,93],"in":[12,132,154],"recent":[13],"years,":[14],"exploiting":[15],"social":[16],"engineering":[17],"and":[18,27,44,58,73,81,90,100,122,128,162],"malware":[19],"dupe":[21],"victims":[22],"into":[23,149],"divulging":[24],"confidential":[25],"information":[26,80],"executing":[28],"fraudulent":[29],"transactions.":[30],"This":[31,85],"paper":[32],"provides":[33],"a":[34],"comprehensive":[35],"review":[36],"of":[37,50,54,114,138,152],"BEC":[38,55,106],"attacks,":[39],"including":[40],"their":[41,59,70,97],"principles,":[42],"techniques,":[43],"impacts":[45],"on":[46,63,117],"enterprises.":[47],"In":[48],"light":[49],"the":[51,102,111,118,123,135,139,143,150,160],"rising":[52],"tide":[53],"globally":[57],"significant":[60],"financial":[61,83],"impact":[62],"business,":[64],"it":[65],"is":[66],"crucial":[67],"understand":[69],"modus":[71],"operandi":[72],"adopt":[74],"proactive":[75],"measures":[76,124],"protect":[78],"sensitive":[79],"prevent":[82,127],"losses.":[84],"study":[86],"offers":[87],"valuable":[88],"recommendations":[89],"insights":[91,148],"for":[92,164],"seeking":[94],"enhance":[96],"cybersecurity":[98,166],"posture":[99],"mitigate":[101],"risks":[103],"associated":[104],"with":[105,134],"attacks.":[107],"Moreover,":[108],"we":[109,146],"analyze":[110],"Greek":[112,144],"landscape":[113],"cyberattacks,":[115],"focusing":[116],"existing":[119],"regulatory":[120],"framework":[121],"taken":[125],"respond":[129],"cybercrime":[131],"accordance":[133],"NIS":[136],"Directives":[137],"EU.":[140],"By":[141],"examining":[142],"landscape,":[145],"gain":[147],"effectiveness":[151],"countermeasures":[153],"this":[155],"region,":[156],"well":[158],"challenges":[161],"opportunities":[163],"improving":[165],"practices.":[167]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":10},{"year":2024,"cited_by_count":6},{"year":2023,"cited_by_count":1}],"updated_date":"2026-06-18T10:00:31.954636","created_date":"2023-09-05T00:00:00"}