Inside a Business Email Compromise Attack

October 15, 2025

Course description

Business email compromise (BEC) remains one of the most significant cyber threats facing the healthcare sector, with attackers increasingly targeting healthcare organizations, insurers and administrators to gain access to sensitive patient data and financial systems. This webinar will illustrate a typical BEC attack from the perspectives of both the threat actor and the victim. Experienced presenter Matt Dowling of Surefire Cyber will leverage authentic adversary tools to demonstrate how threat attackers gain unauthorized access to email accounts. The presentation will highlight techniques used by threat actors to circumvent multi-factor authentication (MFA) and security controls such as geofencing and employing anonymizing VPN services. Attendees will also gain practical insights into real-world threat actor methodologies and learn strategies for safeguarding against them.

Learning objectives

At the conclusion of this learning activity, participants will be able to:

  • Summarize the full life cycle of a business email compromise attack, from targeting to exploitation
  • Recognize how threat actors use compromised accounts to send phishing emails
  • Describe how threat actors bypass security controls such as multi-factor authentication (MFA)
  • Identify best practices for effectively safeguarding against business email compromise attacks and minimizing organizational risk

Target audience

Physician and clinician policyholders

Disclosure

The planners, faculty, and others in control of content have no relevant financial relationships with ineligible companies.

CME information

ISMS logo This activity has been planned and implemented in accordance with the accreditation requirements and policies of the Accreditation Council for Continuing Medical Education (ACCME) through the joint providership of the Illinois State Medical Society and ISMIE Mutual Insurance Company. The Illinois State Medical Society is accredited by the ACCME to provide continuing medical education for physicians.

The Illinois State Medical Society designates this live activity for a maximum of 1.00 AMA PRA Category 1 Credit. Physicians should claim only the credit commensurate with the extent of their participation in the activity.

The Illinois Nurse Practice Act rules deem CME credit provided by approved sponsors as acceptable to fulfill nursing continuing education requirements for licensure. Nurses may claim one contact hour per unit of CME in the state of Illinois.

Additional information

Estimated time for completion: 
1 hour
Disclaimer: 

The recommendations contained in this resource are not intended to define conduct that is appropriate in every case, should not be considered as establishing any standard of care, and do not constitute legal advice. Physicians, clinicians and healthcare providers should take care to ensure that all care rendered reflects the best clinical judgment and complies with the laws and regulations of the state or location at which the care was provided.

Course summary
Available credit: 
  • 1.00 AMA PRA Category 1 Credits™

    This activity has been planned and implemented in accordance with the accreditation requirements and policies of the Accreditation Council for Continuing Medical Education (ACCME) through the joint providership of the Illinois State Medical Society and ISMIE Mutual Insurance Company. The Illinois State Medical Society is accredited by the ACCME to provide continuing medical education for physicians.

    The Illinois State Medical Society designates this enduring material for a maximum of 1.00 AMA PRA Category 1 Credits™. Physicians should claim only the credit commensurate with the extent of their participation in the activity.

  • 1.00 Discount Credit
  • 1.00 Participation Credit
Course opens: 
01/02/2025
Course expires: 
10/29/2025
Event starts: 
10/15/2025 - 12:00pm
Event ends: 
10/15/2025 - 1:00pm
Add to calendar: 
Rating: 
0

Matthew Dowling

Matthew DowlingMatthew Dowling has over 11 years’ experience in cybersecurity consulting, taking part in hundreds of incident response cases, penetration tests and cybersecurity projects throughout his career. His offensive and defensive technical expertise, cyber industry knowledge and consulting experience provides him with the tools to effectively advise clients on securing their environment from active or imminent cyber threats. In addition to his work with Surefire Cyber, Matthew has taught Information Technology at Lincoln Technical Institute.

Available Credit

  • 1.00 AMA PRA Category 1 Credits™

    This activity has been planned and implemented in accordance with the accreditation requirements and policies of the Accreditation Council for Continuing Medical Education (ACCME) through the joint providership of the Illinois State Medical Society and ISMIE Mutual Insurance Company. The Illinois State Medical Society is accredited by the ACCME to provide continuing medical education for physicians.

    The Illinois State Medical Society designates this enduring material for a maximum of 1.00 AMA PRA Category 1 Credits™. Physicians should claim only the credit commensurate with the extent of their participation in the activity.

  • 1.00 Discount Credit
  • 1.00 Participation Credit
Please login to access.