---
title: "BEC and FTF scams are leading to a steep rise in cyber insurance claims! | AutoSPF"
description: "As per the recent Coalition 2025 Cyber Claims Report, business email compromise-based attacks (BEC) and fund transfer frauds (FTF) have led to a steep surge in."
image: "https://autospf.com/og/blog/bec-ftf-scams-driving-rise-in-cyber-insurance-claims.png"
canonical: "https://autospf.com/blog/bec-ftf-scams-driving-rise-in-cyber-insurance-claims/"
---

Quick Answer

As per the recent Coalition 2025 Cyber Claims Report, business email compromise-based attacks (BEC) and fund transfer frauds (FTF) have led to a steep surge in the number of cyber insurance claims in 2024\. Businesses around the world have been facing sophisticated BEC and FTF attacks that are affecting them financially, operationally, as well as emotionally.

BEC and FTF scams are leading to a steep rise in cyber insurance claims!

Your browser does not support the audio element.

[ Download episode](/audio/bec-ftf-scams-driving-rise-in-cyber-insurance-claims.mp3) 

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fautospf.com%2Fblog%2Fbec-ftf-scams-driving-rise-in-cyber-insurance-claims%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=BEC%20and%20FTF%20scams%20are%20leading%20to%20a%20steep%20rise%20in%20cyber%20insurance%20claims!&url=https%3A%2F%2Fautospf.com%2Fblog%2Fbec-ftf-scams-driving-rise-in-cyber-insurance-claims%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fautospf.com%2Fblog%2Fbec-ftf-scams-driving-rise-in-cyber-insurance-claims%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fautospf.com%2Fblog%2Fbec-ftf-scams-driving-rise-in-cyber-insurance-claims%2F&title=BEC%20and%20FTF%20scams%20are%20leading%20to%20a%20steep%20rise%20in%20cyber%20insurance%20claims! "Share on Reddit") [ ](mailto:?subject=BEC%20and%20FTF%20scams%20are%20leading%20to%20a%20steep%20rise%20in%20cyber%20insurance%20claims!&body=Check out this article: https%3A%2F%2Fautospf.com%2Fblog%2Fbec-ftf-scams-driving-rise-in-cyber-insurance-claims%2F "Share via Email") 

![cyber insurance claims](https://media.mailhop.org/autospf/images/2025/05/spf-record-checker-7896.jpg) 

As per the recent [Coalition 2025 Cyber Claims Report](https://web.coalitioninc.com/download-2025-cyber-claims-report.html), business email compromise-based attacks (BEC) and fund transfer frauds (FTF) have led to a steep surge in the number of cyber insurance claims in 2024\. Businesses around the world have been facing sophisticated BEC and FTF attacks that are affecting them financially, operationally, as well as emotionally. Threat actors are working hard to refine and revamp their [social engineering tactics](https://www.computerweekly.com/news/366580938/More-social-engineering-attacks-on-open-source-projects-observed), thereby leading to financial and reputational damages to organizations.

_According to the [FBI’s 2022 Internet Crime Report (IC3)](https://www.ic3.gov/Media/PDF/AnnualReport/2022%5FIC3Report.pdf), 300,497 US-based victims reported phishing incidents in a single year, and Business Email Compromise (BEC) - a domain-spoofing attack that SPF, DKIM, and DMARC are specifically designed to prevent - caused more than $2.7 billion in direct losses._

The cyber insurance provider company, Coalition, suggests that [BEC and FTF attacks](https://www.scworld.com/news/most-cyber-insurance-claims-stem-from-bec-fraud-report-says) have been the main cyber incidents for the past 3 years, leading to increased cyber insurance claims. The report focuses on the persistent threat that such attacks pose to global organizations.

![ threat of BEC and FTF attacks
](https://media.mailhop.org/autospf/images/2025/05/spf-record-syntax-5976.jpg)

## The pervasive threat of BEC and FTF attacks!

[Email communications](https://www.tidio.com/blog/email-communication/), being one of the most commonly used methodologies to interact, continue to be the favorite choice of threat actors. Business email compromise attacks accounted for [73% of all reported cyber incidents](https://www.eye.security/press/bec-incidents-surge-in-2024-driving-up-insurance-costs) in 2024, and the average expenditure per BEC attack costs upto [$4.89 million](https://www.ibm.com/think/topics/business-email-compromise). These BEC attacks involve gaining unauthorized access to official business email IDs, thereby conducting data theft. Further, the threat actors may attempt additional account compromises and try to carry out other related [malicious activities](https://www.reuters.com/technology/artificial-intelligence/openai-removes-users-china-north-korea-suspected-malicious-activities-2025-02-21/). What’s worse is that about 29% of these BEC attacks led to fund transfers from the victims’ accounts to those of cyberattackers.

The increasing complexity of these email attacks, such as spoofed emails and compromised vendor accounts, further highlights the significance of cybersecurity awareness and a swift attack response system.

![breach investigation
](https://media.mailhop.org/autospf/images/2025/05/spf-record-example-7805.jpg)

## The cause behind the increasing BEC expenses

The overall [cyber insurance claims](https://www.coalitioninc.com/topics/cyber-insurance-claims) frequency was comparatively stable in 2024\. However, BEC attacks related expenses spiked up because of the increase in the forensic, legal, and data recovery costs. The below-mentioned activities also add to the overall BEC expenses:

- Data mining and [breach investigation](https://concentric.ai/post-breach-investigation-a-focus-on-data/)
- Legal consultation and compliance expenditure
- End-user notification and post-attack support
- Incident response team deployment

Another major cause of increased BEC expenses can be the complex nature of [digital footprint analysis](https://seon.io/resources/guides/digital-footprint-fraud-prevention/) and the delayed assessment of the extent of damage. The more an organization takes time for damage mitigation, the higher the overall expenses tend to be. 

![email attacks so convincingly real
](https://media.mailhop.org/autospf/images/2025/05/spf-record-tester-9370.jpg)

## Why are email attacks so convincingly real?

The human-first approach of every BEC and FTF attack makes them highly convincing and credible. Each email content is designed keeping in mind human psychology. These emails seem too real to be ignored. Cyberattackers send out convincing emails from spoofed domains or pose as trusted contacts, which trap naive employees into making wire transfers or even sharing sensitive information. 

Generative AI tools have made it even easier for threat actors. _These easily accessible generative AI tools enable cyberattackers to come up with email content that looks flawless_. Artificial Intelligence helps [threat actors](https://cybersecuritynews.com/threat-actors-targeting-local-communities-in-the-u-s/) create email content that contains zero grammatical errors and spelling mistakes. As a result, these emails look polished and real.

![threat actors ](https://media.mailhop.org/autospf/images/2025/05/spf-flattening-5629.jpg) 

That’s exactly why we must understand that cybersecurity mechanisms go far beyond just antivirus software and firewalls. It also includes robust [email security](/) protocols such as [DMARC](https://dmarcreport.com/), [DKIM](/blog/what-is-spf-email-a-guide-to-sender-validation-technology/), and [SPF](/10-reasons-for-regular-spf-record-checks-in-cybersecurity/dkim-record-check/), as well as an emphasis on human awareness, vigilance, and behavioral analysis.

## What should organizations do in the wake of increased BEC and FTF attacks?

In order to steer clear of BEC and FTF attacks, organizations must embrace the following security tactics:

### Track digital exposure closely

Use relevant tools for digital footprint analysis and online risk evaluation. This will help you anticipate any kind of vulnerabilities and prepare well ahead of time to combat them.

![Carry out security awareness training sessions
](https://media.mailhop.org/autospf/images/2025/05/spf-validator-7320.jpg)

### Enable MFA

[MFA or Multi Factor Authentication](https://www.onelogin.com/learn/what-is-mfa) System adds an extra layer of security, making it difficult for threat attackers to penetrate your system even if your credentials have already been compromised.

### Carry out security awareness training sessions

Train your employees from time to time and help them tell apart the [fake emails](https://www.usatoday.com/story/money/columnist/2023/09/21/ai-cyber-scams-security/70920106007/) from the genuine ones. Spread awareness around AI-generated emails, [phishing, and spoofing](https://www.bleepingcomputer.com/news/google/google-now-blocks-spoofed-emails-for-better-phishing-protection/) attacks.

### Look out for dark web activity

It is a good practice to hire [dark web](https://www.cbc.ca/news/world/google-free-dark-web-monitoring-1.7262043) surveillance and darknet monitoring services. This keeps you informed in case sensitive company data is being shared or sold online.

![dark web monitoring](https://media.mailhop.org/autospf/images/2025/05/spf-permerror-8631.jpg) 

### Establish a fast incident response protocol

In case of a BEC or FTF attack, every moment of delay will add to your expenditure. It is therefore important to have a fast incident response system. This will help you bring down the extent of damage and relevant expenses.

The organizations that managed to avoid BEC and FTF attacks in 2024 are the ones that chose to stay proactive and alert against threat attacks. They had a foolproof plan in place, which they followed with precision, thereby averting any kind of [cyber mishap](https://thehackernews.com/2024/07/cybercriminals-exploit-crowdstrike.html).

If you are losing your sleep over the steep surge in BEC and FTF attacks, start working on a solid [cybersecurity](/blog/8-cybersecurity-trends-that-will-redefine-the-digital-landscape-in-2024/) mechanism today.

## Topics

[ DKIM ](/tags/dkim/)[ DMARC ](/tags/dmarc/)[ email security ](/tags/email-security/)[ SPF ](/tags/spf/) 

![Brad Slavin](https://media.mailhop.org/autospf/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead for AutoSPF's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Ready to get started?

Try AutoSPF free — no credit card required.

[ Book a Demo ](/book-a-demo/) 

## Related Articles

[  Intermediate 5m  The 12.4 billion shield for your email communications: Why DMARC software is the unsung hero in the war against phishing actors!  Nov 19, 2025 ](/blog/12-4-billion-dmarc-software-shield-protecting-email-from-phishing-actors/)[  Intermediate 3m  3 points to consider before setting your SPF record to -all (HardFail)  May 22, 2025 ](/blog/3-points-to-consider-before-setting-your-spf-record-hardfail/)[  Intermediate 6m  550 From address violates UsernameCaseMapped Policy: Why does this happen, and how to fix it?  Feb 20, 2026 ](/blog/550-from-address-violates-usernamecasemapped-policy-common-causes-and-fixes/)[  Intermediate 6m  6 Smart Strategies to Prevent CEO Email Fraud  May 8, 2026 ](/blog/6-smart-strategies-to-prevent-ceo-email-fraud/)

```json
{"@context":"https://schema.org","@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com","logo":{"@type":"ImageObject","url":"https://autospf.com/images/autospf-logo.png"},"description":"Automatic SPF flattening and email authentication management. Resolve SPF lookup limits, flatten SPF records, and maintain email deliverability across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138897474","https://www.linkedin.com/company/autospf","https://x.com/autospf01","https://www.g2.com/products/autospf/reviews"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://autospf.com/contact-us/"},"knowsAbout":["SPF Record Flattening","Sender Policy Framework","Email Authentication","DNS Management","DMARC","DKIM"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"AutoSPF","url":"https://autospf.com","description":"Automatic SPF flattening and email authentication management. Resolve SPF lookup limits, flatten SPF records, and maintain email deliverability across all your domains.","publisher":{"@type":"Organization","name":"AutoSPF","url":"https://autospf.com","logo":{"@type":"ImageObject","url":"https://autospf.com/images/autospf-logo.png"},"description":"Automatic SPF flattening and email authentication management. Resolve SPF lookup limits, flatten SPF records, and maintain email deliverability across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"BEC and FTF scams are leading to a steep rise in cyber insurance claims!","description":"As per the recent Coalition 2025 Cyber Claims Report, business email compromise-based attacks (BEC) and fund transfer frauds (FTF) have led to a steep surge in.","url":"https://autospf.com/blog/bec-ftf-scams-driving-rise-in-cyber-insurance-claims/","datePublished":"2025-05-15T18:15:29.000Z","dateModified":"2026-04-18T02:36:41.000Z","dateCreated":"2025-05-15T18:15:29.000Z","author":{"@type":"Person","@id":"https://autospf.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://autospf.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind AutoSPF, DMARC Report, Phish Protection, and Mailhop. He founded DuoCircle in 2014 to solve the SPF 10-DNS-lookup problem at scale and has led the company's growth to 2,000+ customers. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement) rather than hands-on DNS engineering.","image":"https://media.mailhop.org/autospf/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"AutoSPF","url":"https://autospf.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com","logo":{"@type":"ImageObject","url":"https://autospf.com/images/autospf-logo.png"},"description":"Automatic SPF flattening and email authentication management. Resolve SPF lookup limits, flatten SPF records, and maintain email deliverability across all your domains.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.wikidata.org/wiki/Q138897474","https://www.linkedin.com/company/autospf","https://x.com/autospf01","https://www.g2.com/products/autospf/reviews"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://autospf.com/contact-us/"},"knowsAbout":["SPF Record Flattening","Sender Policy Framework","Email Authentication","DNS Management","DMARC","DKIM"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://autospf.com/blog/bec-ftf-scams-driving-rise-in-cyber-insurance-claims/"},"articleSection":"intermediate","keywords":"DKIM, DMARC, email security, SPF","wordCount":943,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/autospf/images/2025/05/spf-record-checker-7896.jpg","caption":"cyber insurance claims","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://autospf.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://autospf.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://autospf.com/intermediate/"},{"@type":"ListItem","position":4,"name":"BEC and FTF scams are leading to a steep rise in cyber insurance claims!","item":"https://autospf.com/blog/bec-ftf-scams-driving-rise-in-cyber-insurance-claims/"}]}
```