BEC: Seu CEO Vai Pedir TED Pra Fraudador?
Business Email Compromise assessment — auditoria de email-spoofing, illicit consent grant, account takeover do C-level, deepfake voice, runbook anti-fraude.
Why now
The real pain
BEC é o ataque mais lucrativo do BR contra média empresa. CEO viaja, fraudador comprometeu email do CFO, gerente paga R$ 800k pra conta falsa. Sem MFA real, sem SPF/DKIM/DMARC, sem cultura de second-channel verification, é só questão de quando.
References and threat actors
/attack-surface
BEC · Email Comprometido
Every engagement is designed for your environment. The points below are part of our standard playbook for this sector — final scope is adapted to your stack and contract.
SPF, DKIM, DMARC
Validação de policy, alinhamento, reject rate, BIMI, monitoring de relatório agregado.
Account Takeover (M365/Google Workspace)
Phishing, password spray, MFA fatigue, illicit consent grant, app registration backdoor.
Email spoofing e display name
Lookalike domain (intrusi0.io), display name fraud, reply-to manipulation.
Deepfake voice call
Voice cloning de C-level, simulado com autorização — testa runbook de segunda confirmação.
Wire transfer fraud
Mudança de conta de fornecedor, validação out-of-band, processo financeiro.
Runbook anti-BEC
Cultura de second-channel, política de pagamento, treinamento focado em finance + compras.
/methodology
Genuinely manual pentest
Automated scanners find what's documented. Real attackers find what isn't. 90% of the work is manual — performed by specialists holding OSCP, CISSP, CRTO and GPEN.
01 · Reconnaissance
Target mapping, OSINT, footprint, sector-specific threat modeling.
02 · Discovery
Deep enumeration, complementary scanning, manual exposure identification.
03 · Exploitation
Manual validation with controlled PoC, finding chaining, escalation.
04 · Report
Executive + technical, step-by-step replication, mapped to applicable regulation.
/why-trust
Who has trusted our work
Resposta a incidente em empresas médias após perda de 6-7 dígitos por BEC; assessment preventivo em fintech e indústria.
Technical assessment recognized in highly regulated, mission-critical environments — the pentest that finds what nobody had found before.
Douglas Lopes
Founder · CEO · intrus.io
/crivo · integrity program
of pentester candidates fail our Crivo screening
Do you know who's getting access to your environment?
NDAs work in court. They don't work day-to-day. Before first access, every pentester on our team passes background, psychometric profile and integrity testing.
- In-depth criminal, fiscal and professional verification
- Psychometric assessment and risk profile
- Practical integrity testing with controlled scenarios
- Fixed team — non-rotating, no 'stranger every engagement'
/faq
FAQ — BEC · Email Comprometido
Vocês fazem ATO simulado no email do CEO?
Sim, com autorização. ATO simulado em conta sandbox separada, sem comprometer dado real. Valida resposta do SOC + processo financeiro.
Faixa de preço?
Assessment técnico (SPF/DKIM/DMARC + ATO check): R$ 18-40k. Assessment completo + tabletop + treinamento: R$ 40-100k.
/contact
Validar runbook anti-BEC
Schedule a confidential meeting. Within 48h we'll send a proposal with scope, timeline and pricing.