Typically used to steal money, BEC involves threat actors compromising email accounts at target companies and then targeting employees in charge of making payments with fraudulent emails that instruct them to wire transfer large amounts of money to bank accounts controlled by the attackers.
In the attacks targeting the food and agriculture sector, however, the threat actors are using spoofed emails and domains to impersonate legitimate companies and order food products without paying for them. In observed incidents, the attackers stole shipments valued at hundreds of thousands of dollars.